Sharp Dragon Expands Towards Africa and The Caribbean
Essential information
- Published
- 23/05/2024 14:17
- Modified
- 23/05/2024 14:55
- Tags
- 2024-05-23 CVE-2023-0669 africa caribbean cobalt strike beacon cyber espionage expansion government targeting
- Related entities
- 1 vulnerabilities (cve), 38 observables, 1 intrusion sets (apt), 16 techniques (mitre), 1 malware, 2 others
Description
Check Point Research has observed a significant shift in the activities and lures of Sharp Dragon, a Chinese threat actor, now targeting governmental organizations in Africa and the Caribbean. This expansion aligns with Sharp Dragon's known tactics of compromising email accounts to spread weaponized documents and deploy malware like Cobalt Strike Beacon. The actors exploit government relationships to establish footholds in new territories, demonstrating increased reconnaissance efforts and utilizing compromised infrastructure as command-and-control servers.