DNSpionage

GPTKB entity

Statements (23)
Predicate Object
gptkbp:instanceOf cyberattack campaign
gptkbp:affectedArea gptkb:Middle_East
gptkbp:discoveredBy gptkb:Cisco_Talos
gptkbp:enemyOf phishing
DNS hijacking
gptkbp:exploits DNS infrastructure
webmail services
gptkbp:firstReported 2018
gptkbp:goal espionage
data theft
https://www.w3.org/2000/01/rdf-schema#label DNSpionage
gptkbp:notableVictim gptkb:Lebanese_government
gptkb:United_Arab_Emirates_government
private companies
gptkbp:relatedTo Sea Turtle (cyberattack)
gptkbp:target gptkb:government_agency
private sector organizations
Middle Eastern organizations
gptkbp:technique credential harvesting
DNS redirection
gptkbp:usesMalware custom backdoor
gptkbp:bfsParent gptkb:APT34
gptkbp:bfsLayer 7