Trusted Design

THE DUKES: 7 years of Russian cyberespionage

概要

The Dukes are a well-resourced, highly dedicated and organized cyberespionage group that we believe has been working for the Russian Federation since at least 2008 to collect intelligence in support of foreign and security policy decision-making. ...the Dukes show unusual confidence in their ability to continue successfully compromising their targets [...], as well as in their ability to operate with impunity. The Dukes primarily target Western governments and related organizations, such as government ministries and agencies, political think tanks, and governmental subcontractors. Their targets have also included the governments of members of the Commonwealth of Independent States; Asian, African, and Middle Eastern governments; organizations associated with Chechen extremism; and Russian speakers engaged in the illicit trade of controlled substances and drugs.

Created: 2026-02-23

Indicators

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

Ember Bear

Score: 4.13
Matched TTPs:
  • T1491.002 - External Defacement
MITREへのリンク →

Sandworm Team

Score: 6.88
Matched TTPs:
  • T1491.002 - External Defacement
  • T1199 - Trusted Relationship
MITREへのリンク →

APT33

Score: 4.13
Matched TTPs:
  • T1552.006 - Group Policy Preferences
MITREへのリンク →

Wizard Spider

Score: 6.53
Matched TTPs:
  • T1552.006 - Group Policy Preferences
  • T1569.002 - Service Execution
MITREへのリンク →

APT28

Score: 6.88
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1211 - Exploitation for Defense Evasion
MITREへのリンク →

APT29

Score: 5.27
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

OilRig

Score: 6.37
Matched TTPs:
  • T1201 - Password Policy Discovery
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Chimera

Score: 8.83
Matched TTPs:
  • T1201 - Password Policy Discovery
  • T1569.002 - Service Execution
  • T1124 - System Time Discovery
MITREへのリンク →

Turla

Score: 6.44
Matched TTPs:
  • T1201 - Password Policy Discovery
  • T1124 - System Time Discovery
MITREへのリンク →

Storm-0501

Score: 5.67
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1219.002 - Remote Desktop Software
MITREへのリンク →

Blue Mockingbird

Score: 5.14
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1569.002 - Service Execution
MITREへのリンク →

Kimsuky

Score: 5.67
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1219.002 - Remote Desktop Software
MITREへのリンク →

APT32

Score: 5.14
Matched TTPs:
  • T1218.010 - Regsvr32
  • T1569.002 - Service Execution
MITREへのリンク →

Contagious Interview

Score: 5.45
Matched TTPs:
  • T1219.002 - Remote Desktop Software
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Storm-1811

Score: 5.45
Matched TTPs:
  • T1219.002 - Remote Desktop Software
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

FIN7

Score: 4.99
Matched TTPs:
  • T1569.002 - Service Execution
  • T1124 - System Time Discovery
MITREへのリンク →

Velvet Ant

Score: 6.53
Matched TTPs:
  • T1569.002 - Service Execution
  • T1211 - Exploitation for Defense Evasion
MITREへのリンク →

FIN6

Score: 4.92
Matched TTPs:
  • T1569.002 - Service Execution
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Moonstone Sleet

Score: 4.92
Matched TTPs:
  • T1569.002 - Service Execution
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

CURIUM

Score: 5.12
Matched TTPs:
  • T1124 - System Time Discovery
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Lazarus Group

Score: 5.12
Matched TTPs:
  • T1124 - System Time Discovery
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Chimera

Score: 0.78
Matched TTPs:
  • T1124 - System Time Discovery
  • T1201 - Password Policy Discovery
  • T1569.002 - Service Execution
MITREへのリンク →

APT28

Score: 0.66
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1211 - Exploitation for Defense Evasion
MITREへのリンク →

Sandworm Team

Score: 0.66
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1491.002 - External Defacement
MITREへのリンク →

Turla

Score: 0.63
Matched TTPs:
  • T1124 - System Time Discovery
  • T1201 - Password Policy Discovery
MITREへのリンク →

Wizard Spider

Score: 0.61
Matched TTPs:
  • T1552.006 - Group Policy Preferences
  • T1569.002 - Service Execution
MITREへのリンク →

OilRig

Score: 0.60
Matched TTPs:
  • T1201 - Password Policy Discovery
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Velvet Ant

Score: 0.59
Matched TTPs:
  • T1211 - Exploitation for Defense Evasion
  • T1569.002 - Service Execution
MITREへのリンク →

Kimsuky

Score: 0.58
Matched TTPs:
  • T1219.002 - Remote Desktop Software
  • T1218.010 - Regsvr32
MITREへのリンク →

APT29

Score: 0.58
Matched TTPs:
  • T1199 - Trusted Relationship
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクター グラフ

← Pulse一覧に戻る