Trusted Design

Volt Typhoon

アクターID: G1017

脅威アクターの詳細

Volt Typhoon is a People's Republic of China (PRC) state-sponsored actor that has been active since at least 2021 primarily targeting critical infrastructure organizations in the US and its territories including Guam. Volt Typhoon's targeting and pattern of behavior have been assessed as pre-positioning to enable lateral movement to operational technology (OT) assets for potential destructive or disruptive attacks. Volt Typhoon has emphasized stealth in operations using web shells, living-off-the-land (LOTL) binaries, hands on keyboard activities, and stolen credentials.(Citation: CISA AA24-038A PRC Critical Infrastructure February 2024)(Citation: Microsoft Volt Typhoon May 2023)(Citation: Joint Cybersecurity Advisory Volt Typhoon June 2023)(Citation: Secureworks BRONZE SILHOUETTE May 2023)

脅威アクターの別名・別称

Volt Typhoon
BRONZE SILHOUETTE
Vanguard Panda
DEV-0391
UNC3236
Voltzite
Insidious Taurus

利用した攻撃手法

Actor – Pulse グラフ

← 脅威アクター一覧に戻る

Volt Typhoon

脅威アクターの詳細

脅威アクターの別名・別称

利用した攻撃手法

関連するCVE (攻撃手法に関連)

Actor – Pulse グラフ