APT60

URI: https://gptkb.org/entity/APT60
GPTKB entity
Statements (33)
Predicate Object
gptkbp:instanceOf cybercrime
gptkbp:activeYearsStart at least 2009
gptkbp:alsoKnownAs gptkb:Red_Apollo
cathedral
gptkbp:attributedTo gptkb:Palo_Alto_Networks
gptkb:CrowdStrike
gptkb:FireEye
gptkbp:countryOfOrigin gptkb:China
https://www.w3.org/2000/01/rdf-schema#label APT60
gptkbp:industry gptkb:military
maritime industry
research institutions
government organizations
engineering firms
gptkbp:mainActivity cybercrime
gptkbp:notableOperation gptkb:Operation_CuckooBees
attacks on South China Sea targets
gptkbp:region gptkb:Europe
gptkb:United_States
gptkb:Asia-Pacific
gptkbp:suspect gptkb:Chinese_government
gptkbp:TTPs custom malware
spear phishing
watering hole attacks
gptkbp:usesMalware gptkb:AirBreak
gptkb:NanHaiShu
gptkb:PhotoMiner
gptkb:Pisloader
gptkb:SeaDuke
gptkb:TidePool
BlackCoffee
gptkbp:bfsParent gptkb:TA-60
gptkbp:bfsLayer 5