DragonOK

DragonOK is a threat group that has targeted Japanese organizations with phishing emails. Due to overlapping TTPs, including similar custom tools, DragonOK is thought to have a direct or indirect relationship with the threat group Moafee. It is known to use a variety of malware, including Sysget/HelloBridge, PlugX, PoisonIvy, FormerFirstRat, NFlog, and NewCT.

This Cyber News was published on attack.mitre.org. Publication date: Thu, 07 Dec 2023 22:12:07 +0000

Cyber News related to DragonOK

DragonOK - DragonOK is a threat group that has targeted Japanese organizations with phishing emails. Due to overlapping TTPs, including similar custom tools, DragonOK is thought to have a direct or indirect relationship with the threat group Moafee. It is ...
1 year ago Attack.mitre.org DragonOK Moafee

Moafee - Moafee is a threat group that appears to operate from the Guandong Province of China. Due to overlapping TTPs, including similar custom tools, Moafee is thought to have a direct or indirect relationship with the threat group DragonOK. ...
1 year ago Attack.mitre.org DragonOK Moafee

Latest Cyber News

Police arrests 300 suspects linked to African cybercrime rings

DrayTek routers worldwide go into reboot loops over weekend

Russian media, academia targeted in espionage campaign using Google Chrome zero-day exploit | The Record from Recorded Future News

Hackers steal sensitive data from Pennsylvania county during ransomware attack | The Record from Recorded Future News

New VanHelsingRaaS Attacking Linux, BSD, ARM, and ESXi Systems

New Linux Kernel Rust Module Unveiled to Detect Rootkits

Over 300 arrested in international crackdown on cyber scams | The Record from Recorded Future News

CrushFTP warns users to patch unauthenticated access flaw immediately

Oracle denies breach after hacker claims theft of 6 million data records

Alleged Snowflake hacker consents to extradition from Canada after US charges | The Record from Recorded Future News

Nearly $13 million stolen from Abracadabra Finance in crypto heist | The Record from Recorded Future News

VMware Vulnerabilities Exploited Actively to Deploy Ransomware

Microsoft Trust Signing service abused to code-sign malware

Hacker Claims Sale of 6 Million Records Stolen from Oracle Cloud Servers

Critical Next.js Middleware Vulnerability Let Attackers Gain Unauthorized Access

Cyber Guardians: INE Security Champions Cybersecurity Training During National Physicians Week 2025

Cyber Trends (last 7 days)

Trending Cyber News (last 7 days)

Retail giant Sam’s Club investigates Clop ransomware breach claims

OpenAI now pays researchers $100,000 for critical vulnerabilities

New Python-Based Discord RAT Attacking Users to Steal Login Credentials

Phishing-as-a-service operation uses DNS-over-HTTPS for evasion

Microsoft fixes button that restores classic Outlook client

New Ubuntu Linux security bypasses require manual mitigations

PJobRAT Android RAT as Dating & Instant Messaging Apps Attacking Military Personnel

Russian Hackers Mimic as CIA to Steal Ukraine Defense Intelligence Data

Oracle Health breach compromises patient data at US hospitals

SHELBY Malware Steal Data Abusing GitHub for Command-and-control Server

Hackers Abuse MailChimp Email Marketing Platform via Phishing, and Social Engineering Tactics

PlayBoy Locker Ransomware Attacking Windows, NAS and ESXi Operating Systems

Microsoft fixes Remote Desktop issues caused by Windows updates

New FamousSparrow Malware Attacking Hotels & Engineering Companies to New Backdoor

RansomHub’s EDRKillShifter Link With Other Well-Established Ransomware Gang’s - New Research

Threat Actors Hacked 150,000 Sites to Link Chinese Gambling Sites

Threat Actors Trick Hotel Staff With Fake Booking.com Email to Gain System Access

GLPI Open-source ITSM Tool Vulnerability Let Attackers Inject Malicious SQL Queries

Meta AI Will Begin Rolling Out Across 41 European Countries

Cloudflare Announces OpenPubkey SSH to Integrate Single Sign-on With SSH