IndigoZebra

Description

(Check Point) Check Point Research (CPR) has observed an ongoing cyber espionage operation targeting the Afghan government. Believed to be the Chinese-speaking hacker group known as “IndigoZebra”, the threat actors behind the espionage leveraged Dropbox, the popular cloud storage service, to infiltrate the Afghan National Security Council (NSC). Further investigation by CPR revealed that this is the latest in longer-running activity targeting other Central Asian countries, Kyrgyzstan and Uzbekistan, since at least 2014.

Names

Name	Name-Giver
IndigoZebra	Check Point

Country

China

Motivation

Information theft and espionage

First Seen

2014

Observed Countries

Afghanistan
Kyrgyzstan
Uzbekistan

Tools

Dropbox

Information

https://blog.checkpoint.com/2021/07/01/cyber-espionage-on-afghanistan-kyrgyzstan-and-uzbekistan-by-chinese-speaking-hacker-group/

Mitre Attack

https://attack.mitre.org/groups/G0136/

Other Information

Uuid

b4571e18-c0c8-42fb-9c03-aa7b5b29b2b7

Last Card Change

2022-12-30

Threat Intelligence Garden

Explorer

IndigoZebra

IndigoZebra

Description

Names

Country

Motivation

First Seen

Observed Countries

Tools

Information

Mitre Attack

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks