ETDA สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์
Electronic Transactions Development Agency
Report
Search
Home > List all groups > Operation Bandidos

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link APT group: Operation Bandidos

NamesOperation Bandidos (ESET)
Country[Unknown]
MotivationInformation theft and espionage
First seen2021
Description(ESET) In 2021 we detected an ongoing campaign targeting corporate networks in Spanish-speaking countries, with 90% of the detections in Venezuela. When comparing the malware used in this campaign with what was previously documented, we found new functionality and changes to this malware, known as Bandook. We also found that this campaign targeting Venezuela, despite being active since at least 2015, has somehow remained undocumented. Given the malware used and the targeted locale, we chose to name this campaign Bandidos.
ObservedCountries: Venezuela.
Tools usedBandook.
Information<https://www.welivesecurity.com/2021/07/07/bandidos-at-large-spying-campaign-latin-america/>

Last change to this card: 09 August 2021

Download this actor card in PDF or JSON format

Previous: Operation Armor Piercer
Next: Operation Black Atlas

Digital Service Security Center
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents

Telephone +66 (0)2-123-1227
E-mail [email protected]