SYMBOLCOMMON_NAMEaka. SYNONYMS

Carderbee  (Back to overview)


Symantec recently reported on activity attributed to a threat actor group dubbed Carderbee. In the campaign, the threat actors target entities in Hong Kong and other regions of Asia via a supply chain attack leveraging the legitimate Cobra DocGuard software. The activity began as early as September 2022.


Associated Families

There are currently no families associated with this actor.


References
2023-10-05EclecticIQArda Büyükkaya
Chinese State-Sponsored Cyber Espionage Activity Targeting Semiconductor Industry in East Asia
ChargeWeapon Carderbee
2023-09-08PolySwarm Tech TeamThe Hivemind
Carderbee Targets Hong Kong in Supply Chain Attack
PlugX Carderbee
2023-08-22SymantecThreat Hunter Team
Carderbee: APT Group use Legit Software in Supply Chain Attack Targeting Orgs in Hong Kong
PlugX Carderbee

Credits: MISP Project