SUNBURST

URI: https://gptkb.org/entity/SUNBURST
GPTKB entity
Statements (34)
Predicate Object
gptkbp:instanceOf malware
gptkbp:affects gptkb:SolarWinds_Orion_Platform
gptkbp:alsoKnownAs gptkb:Solorigate
gptkbp:attributedTo gptkb:Cozy_Bear
gptkb:UNC2452
gptkbp:deliveredBy gptkb:SolarWinds_Orion_software_update
gptkbp:discoveredBy gptkb:FireEye
2020
gptkbp:enables command and control
remote access
data exfiltration
https://www.w3.org/2000/01/rdf-schema#label SUNBURST
gptkbp:impact global cybersecurity
gptkbp:notableVictim gptkb:US_Department_of_Treasury
gptkb:European_Parliament
gptkb:Microsoft
gptkb:NATO
gptkb:FireEye
gptkb:US_Department_of_Commerce
gptkbp:relatedTo gptkb:Raindrop
gptkb:TEARDROP
gptkb:SUNSPOT
gptkbp:removes gptkb:Microsoft_Defender
gptkb:FireEye_remediation_tools
gptkbp:target gptkb:government_agency
gptkb:Microsoft_Windows
private companies
gptkbp:usedIn gptkb:SolarWinds_supply_chain_attack
gptkbp:usesMalware backdoor
gptkbp:vulnerableTo gptkb:CVE-2020-10148
gptkbp:writtenBy gptkb:C#
gptkbp:bfsParent gptkb:Cozy_Bear
gptkb:Operation:_Sunburst
gptkbp:bfsLayer 6