Threat Group Cards: A Threat Actor Encyclopedia

Names	Muddled Libra (Palo Alto) 0ktapus (Group-IB) Scattered Spider (CrowdStrike) Scatter Swine (Okta)
Country	[Unknown]
Motivation	Information theft and espionage, Financial gain
First seen	2022
Description	(Palo Alto) Muddled Libra is a methodical adversary that poses a substantial threat to organizations in the software automation, BPO, telecommunications and technology industries. They are proficient in a range of security disciplines, able to thrive in relatively secure environments and execute rapidly to complete devastating attack chains. Muddled Libra doesn’t bring anything new to the table except for the uncanny knack of stringing together weaknesses to disastrous effect. Defenders must combine cutting-edge technology and comprehensive security hygiene, as well as diligent monitoring of external threats and internal events. The high-stakes risk of loss of internal and customer data is a strong incentive to modernize information security programs.
Observed	Sectors: IT, Technology, Telecommunications.
Tools used	DCSync, Impacket, Mimikatz, ProcDump, PsExec, SharpHound, WinRAR.
Information	<https://unit42.paloaltonetworks.com/muddled-libra/#post-128741-_rfqbe8ejs15o>

Last change to this card: 22 June 2023

Download this actor card in PDF or JSON format