SYMBOLCOMMON_NAMEaka. SYNONYMS

LOTUS PANDA  (Back to overview)

aka: ATK1, BRONZE ELGIN, DRAGONFISH, G0030, Lotus BLossom, Red Salamander, ST Group, Spring Dragon

Lotus Blossom is a threat group that has targeted government and military organizations in Southeast Asia.

Associated Families
win.sagerunex
References
2022-11-15SymantecThreat Hunter Team
Billbug: State-sponsored Actor Targets Cert Authority, Government Agencies in Multiple Asian Countries
Sagerunex
2022-04-28PWCPWC UK
Cyber Threats 2021: A Year in Retrospect
BPFDoor APT15 APT31 APT41 APT9 BlackTech BRONZE EDGEWOOD DAGGER PANDA Earth Lusca HAFNIUM HAZY TIGER Inception Framework LOTUS PANDA QUILTED TIGER RedAlpha Red Dev 17 Red Menshen Red Nue VICEROY TIGER
2020-01-01SecureworksSecureWorks
BRONZE ELGIN
Elise LOTUS PANDA
2019-01-01Council on Foreign RelationsCyber Operations Tracker
Lotus Blossom
LOTUS PANDA
2019-01-01MITREMITRE ATT&CK
Group description: Lotus Blossom
LOTUS PANDA
2018-02-13RSAKevin Stear
Lotus Blossom Continues ASEAN Targeting
LOTUS PANDA
2018-01-01Accenture SecurityGareth Russell, Joshua Ray, Kelly Bissell, Ryan LaSalle, Uwe Kissman
LATEST CYBER ESPIONAGE MALWARE ATTACKS
LOTUS PANDA
2018-01-01AccentureBart Parys, Joshua Ray
Dragonfish delivers New Form of Elise Malware targeting ASEAN Defence Ministers' Meeting and Associates
Elise LOTUS PANDA
2017-07-24Kaspersky LabsNoushin Shabab
Spring Dragon – Updated Activity
LOTUS PANDA
2015-12-18Palo Alto Networks Unit 42Jen Miller-Osborn, Robert Falcone
Attack on French Diplomat Linked to Operation Lotus Blossom
LOTUS PANDA
2015-06-17Kaspersky LabsKurt Baumgartner
The Spring Dragon APT
Elise LOTUS PANDA
2015-06-16Palo Alto Networks Unit 42Unit42
Operation Lotus Blossom: A New Nation-State Cyberthreat?
LOTUS PANDA
Credits: MISP Project