24 Dec 2018

Major security incidents

APT10 MSP Breach IoCs

The following attachments have been exported from our MISP event #5826:

2018-12-21 ACSC and NCCIC – Report – MSP Breach – APT10 – REDLEAVES & PlugX RAT – “Investigation report: Compromise of an Australian company via their Managed Service Provider”ย ย 

  • 5826.txt – plain text
  • misp.json – MISP json format

2018-12-21 Removed STIX2 format as it was erroneous.

 

Attached Documents