Trusted Design

Reckless Exploit: Mexican Journalists, Lawyers, and a Child Targeted with NSO Spyware

概要

This report expands the Mexican investigation and shows how 10 Mexican journalists and human rights defenders, one minor child, and one United States citizen, were targeted with NSO’s Exploit Framework. Our investigation was conducted with the collaboration and assistance of R3D, SocialTic and Article 19. With their assistance, we have confirmed over 76 additional messages containing NSO exploit links.

Created: 2026-02-23

Indicators

類似Pulses

Reckless Exploit: Mexican Journalists, Lawyers, and a Child Targeted with NSO Spyware - The Citizen Lab (score: 0.90)
Investigation Into Mexican Mass Disappearance Targeted with NSO Spyware (score: 0.80)
Lawyers For Murdered Mexican Women’s Families Targeted with NSO Spyware (score: 0.78)
Mexican Journalists targeted with NSO Group Malware (score: 0.73)
Bitter Sweet: Supporters of Mexico’s Soda Tax Targeted With NSO Exploit Links (score: 0.71)

このPulseに関連する脅威アクター (事実ベース)

Confucius

Score: 5.64

Matched TTPs:

T1543.003 - Windows Service
T1027.018 - Invisible Unicode
T1665 - Hide Infrastructure

MITREへのリンク →

Kimsuky

Score: 13.21

Matched TTPs:

T1543.003 - Windows Service
T1197 - BITS Jobs
T1027.018 - Invisible Unicode
T1665 - Hide Infrastructure
T1003.003 - NTDS

MITREへのリンク →

Lazarus Group

Score: 6.80

Matched TTPs:

T1543.003 - Windows Service
T1665 - Hide Infrastructure
T1547.008 - LSASS Driver

MITREへのリンク →

ZIRCONIUM

Score: 6.25

Matched TTPs:

T1543.003 - Windows Service
T1197 - BITS Jobs
T1027.018 - Invisible Unicode

MITREへのリンク →

EXOTIC LILY

Score: 5.33

Matched TTPs:

T1543.003 - Windows Service
T1027.018 - Invisible Unicode
T1547.008 - LSASS Driver

MITREへのリンク →

Magic Hound

Score: 5.33

Matched TTPs:

T1543.003 - Windows Service
T1027.018 - Invisible Unicode
T1547.008 - LSASS Driver

MITREへのリンク →

OilRig

Score: 5.33

Matched TTPs:

T1543.003 - Windows Service
T1027.018 - Invisible Unicode
T1547.008 - LSASS Driver

MITREへのリンク →

Windshift

Score: 5.33

Matched TTPs:

T1543.003 - Windows Service
T1027.018 - Invisible Unicode
T1547.008 - LSASS Driver

MITREへのリンク →

APT29

Score: 5.33

Matched TTPs:

T1543.003 - Windows Service
T1027.018 - Invisible Unicode
T1547.008 - LSASS Driver

MITREへのリンク →

Storm-1811

Score: 3.97

Matched TTPs:

T1543.003 - Windows Service
T1547.008 - LSASS Driver

MITREへのリンク →

Patchwork

Score: 5.64

Matched TTPs:

T1543.003 - Windows Service
T1027.018 - Invisible Unicode
T1665 - Hide Infrastructure

MITREへのリンク →

Scattered Spider

Score: 7.57

Matched TTPs:

T1197 - BITS Jobs
T1090.004 - Domain Fronting

MITREへのリンク →

APT28

Score: 4.80

Matched TTPs:

T1197 - BITS Jobs
T1027.018 - Invisible Unicode

MITREへのリンク →

Moonstone Sleet

Score: 5.96

Matched TTPs:

T1197 - BITS Jobs
T1547.008 - LSASS Driver

MITREへのリンク →

Storm-0501

Score: 4.13

Matched TTPs:

T1090.004 - Domain Fronting

MITREへのリンク →

Contagious Interview

Score: 3.88

Matched TTPs:

T1027.018 - Invisible Unicode
T1547.008 - LSASS Driver

MITREへのリンク →

ToddyCat

Score: 5.36

Matched TTPs:

T1665 - Hide Infrastructure
T1547.008 - LSASS Driver

MITREへのリンク →

Ember Bear

Score: 4.13

Matched TTPs:

T1003.003 - NTDS

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

Kimsuky

Score: 0.81

Matched TTPs:

T1003.003 - NTDS
T1665 - Hide Infrastructure
T1543.003 - Windows Service
T1197 - BITS Jobs
T1027.018 - Invisible Unicode

MITREへのリンク →

Related CVEs

このPulseに見つかったCVEはありません。

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る