APT18

Your consent is required to display this content from youtube - Privacy Settings
Click Here to share this post

Type: Nation-state-sponsored

APT18 Status: believed active (PLA NAVY)

APT18 Other Names: Dynamite Panda/ PLA Navy/ TG-0416/ Wekby

Active Since/Discovered: April 2011

Targets: U.S. and others

Target Sectors:

  • Aerospace and Defence; Construction and Engineering; Education; Health and Biotechnology; High Tech; Telecommunications; Transportation

Malware:

  • HTTPBrowser
  • TokenControl
  • HcdLoader
  • PisLoader

Unique:

  • May be responsible for RSA breach (2011) and Community Health Systems data breach
Click Here to share this post