{"id":22406,"date":"2022-12-22T01:30:07","date_gmt":"2022-12-22T01:30:07","guid":{"rendered":"https:\/\/nsfocusglobal.com\/?p=22406"},"modified":"2026-04-17T18:07:42","modified_gmt":"2026-04-17T18:07:42","slug":"bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022","status":"publish","type":"post","link":"https:\/\/nsfocusglobal.com\/pt-br\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/","title":{"rendered":"Bread Crumbs of Threat Actors (Nov 21, 2022 \u2013 Dec 4, 2022)"},"content":{"rendered":"<!DOCTYPE html PUBLIC \"-\/\/W3C\/\/DTD HTML 4.0 Transitional\/\/EN\" \"http:\/\/www.w3.org\/TR\/REC-html40\/loose.dtd\">\n<html><body><p><\/p>\n\n\n\n<p>From November 21, 2022 to December 4, 2022, NSFOCUS Security Labs found activity clues of 60 APT groups, 2 malware families (Mozi ransomware and Banload Trojan horse), and 510 threat actors targeting critical infrastructure.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>APT Groups<\/strong><\/h2>\n\n\n\n<p>Among the 60 discovered APT groups, the APT group Outlaw affected the most significant number of hosts from November 21 to December 4, 2022.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large\"><a href=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/1-2.png\"><img fetchpriority=\"high\" decoding=\"async\" width=\"1024\" height=\"408\" src=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/1-2-1024x408.png\" alt=\"Red circular no entry sign with a white horizontal bar.\" class=\"wp-image-22407\" srcset=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/1-2-1024x408.png 1024w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/1-2-300x119.png 300w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/1-2-768x306.png 768w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/1-2-600x239.png 600w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/1-2.png 1485w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/a><\/figure>\n<\/div>\n\n\n<p class=\"has-text-align-center has-small-font-size\">Number of hosts affected by APT groups from November 21, 2022 through December 4, 2022<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><a href=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/2-2.png\"><img decoding=\"async\" width=\"588\" height=\"345\" src=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/2-2.png\" alt=\"Red circular no entry sign with a white horizontal bar.\" class=\"wp-image-22409\" srcset=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/2-2.png 588w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/2-2-300x176.png 300w\" sizes=\"(max-width: 588px) 100vw, 588px\" \/><\/a><\/figure>\n<\/div>\n\n\n<p class=\"has-text-align-center has-small-font-size\">Industries affected by APT groups from November 21, 2022 through December 4, 2022<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Threat Actors Targeting Critical Infrastructure<\/strong><\/h2>\n\n\n\n<p>A total of 510 threat actors targeting critical infrastructure remain active from November 21, 2022 through December 4, 2022.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><a href=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/3.png\"><img decoding=\"async\" width=\"554\" height=\"334\" src=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/3.png\" alt=\"Red circular no entry sign with a white horizontal bar.\" class=\"wp-image-22411\" srcset=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/3.png 554w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/3-300x181.png 300w\" sizes=\"(max-width: 554px) 100vw, 554px\" \/><\/a><\/figure>\n<\/div>\n\n\n<p class=\"has-text-align-center has-small-font-size\">Distribution of activities by activity type from November 21, 2022<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full is-resized\"><a href=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/Number-of-threat-actors-by-industry.png\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/Number-of-threat-actors-by-industry.png\" alt=\"Red circular no entry sign with a white horizontal bar.\" class=\"wp-image-22454\" width=\"768\" height=\"389\" srcset=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/Number-of-threat-actors-by-industry.png 929w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/Number-of-threat-actors-by-industry-300x152.png 300w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/Number-of-threat-actors-by-industry-768x390.png 768w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/Number-of-threat-actors-by-industry-600x305.png 600w\" sizes=\"(max-width: 768px) 100vw, 768px\" \/><\/a><\/figure>\n<\/div>\n\n\n<p class=\"has-text-align-center has-small-font-size\">Number of threat actors by target industry from November 21, 2022 through December 4, 2022<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Knowledge Graphs of Highlighted APT Groups<\/strong><\/h2>\n\n\n\n<p class=\"has-vivid-cyan-blue-color has-text-color has-medium-font-size\"><strong>Outlaw<\/strong><\/p>\n\n\n\n<p><strong>First Discovery Time:<\/strong> 2020-07-03 06:36:58<\/p>\n\n\n\n<p><strong>Description:<\/strong> The Outlaw botnet uses brute force and SSH to achieve remote access to target systems, and spreads Perl-based Shellbots and Monero miners.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large is-resized\"><a href=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/5.png\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/5-1024x618.png\" alt=\"Red circular no entry sign with a white horizontal bar.\" class=\"wp-image-22415\" width=\"630\" height=\"379\" srcset=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/5-1024x618.png 1024w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/5-300x181.png 300w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/5-768x463.png 768w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/5-600x362.png 600w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/5.png 1281w\" sizes=\"(max-width: 630px) 100vw, 630px\" \/><\/a><\/figure>\n<\/div>\n\n\n<p class=\"has-text-align-center has-small-font-size\">Diamond model of the APT group Outlaw<\/p>\n\n\n\n<p class=\"has-vivid-cyan-blue-color has-text-color has-medium-font-size\"><strong>APT28<\/strong><\/p>\n\n\n\n<p><strong>First Discovery Time:<\/strong> 2020-11-13 07:38:40<\/p>\n\n\n\n<p><strong>Description:<\/strong> APT28 is a famous cyber espionage group. Some researchers believe this organization belongs to the GRU of the&nbsp;Russian&nbsp;Federation. APT 28 is also known as Sofacy Group and STRONGIUM, and its main targets are aviation, national defense, government agencies and international organizations.<\/p>\n\n\n\n<p><strong>Geolocation of Threat Actor:<\/strong> Russia&nbsp;<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full is-resized\"><a href=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/6.png\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/6.png\" alt=\"Red circular no entry sign with a white horizontal bar.\" class=\"wp-image-22417\" width=\"645\" height=\"425\" srcset=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/6.png 811w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/6-300x198.png 300w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/6-768x506.png 768w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/6-600x395.png 600w\" sizes=\"(max-width: 645px) 100vw, 645px\" \/><\/a><\/figure>\n<\/div>\n\n\n<p class=\"has-text-align-center has-small-font-size\">Diamond model of the group APT28<\/p>\n\n\n\n<p class=\"has-vivid-cyan-blue-color has-text-color has-medium-font-size\"><strong>SideWinder<\/strong><\/p>\n\n\n\n<p><strong>First Discovery Time:<\/strong> 2020-02-12 03:10:54<\/p>\n\n\n\n<p><strong>Description:<\/strong> An actor mainly targeting Pakistan military targets, active since at least 2012.<\/p>\n\n\n\n<p><strong>Geolocation of Threat Actor:<\/strong> India&nbsp;<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full is-resized\"><a href=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/7.png\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/7.png\" alt=\"Red circular no entry sign with a white horizontal bar.\" class=\"wp-image-22419\" width=\"600\" height=\"390\" srcset=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/7.png 817w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/7-300x195.png 300w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/7-768x499.png 768w, https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/7-600x390.png 600w\" sizes=\"(max-width: 600px) 100vw, 600px\" \/><\/a><\/figure>\n<\/div>\n\n\n<p class=\"has-text-align-center has-small-font-size\">Diamond model of the APT group SideWinder<\/p>\n<\/body><\/html>\n","protected":false},"excerpt":{"rendered":"<p>From November 21, 2022 to December 4, 2022, NSFOCUS Security Labs found activity clues of 60 APT groups, 2 malware families (Mozi ransomware and Banload Trojan horse), and 510 threat actors targeting critical infrastructure. APT Groups Among the 60 discovered APT groups, the APT group Outlaw affected the most significant number of hosts from November [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":22425,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_coblocks_attr":"","_coblocks_dimensions":"","_coblocks_responsive_height":"","_coblocks_accordion_ie_support":"","footnotes":""},"categories":[3],"tags":[94],"class_list":["post-22406","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog","tag-apt-group"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Bread Crumbs of Threat Actors (Nov 21, 2022 \u2013 Dec 4, 2022) - NSFOCUS<\/title>\n<meta name=\"robots\" content=\"noindex, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<meta property=\"og:locale\" content=\"pt_BR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Bread Crumbs of Threat Actors (Nov 21, 2022 \u2013 Dec 4, 2022) - NSFOCUS\" \/>\n<meta property=\"og:description\" content=\"From November 21, 2022 to December 4, 2022, NSFOCUS Security Labs found activity clues of 60 APT groups, 2 malware families (Mozi ransomware and Banload\" \/>\n<meta property=\"og:url\" content=\"https:\/\/nsfocusglobal.com\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/\" \/>\n<meta property=\"og:site_name\" content=\"NSFOCUS\" \/>\n<meta property=\"article:published_time\" content=\"2022-12-22T01:30:07+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-04-17T18:07:42+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/breadcrumbs.png\" \/>\n<meta name=\"author\" content=\"admin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:title\" content=\"Bread Crumbs of Threat Actors (Nov 21, 2022 \u2013 Dec 4, 2022) - NSFOCUS\" \/>\n<meta name=\"twitter:description\" content=\"From November 21, 2022 to December 4, 2022, NSFOCUS Security Labs found activity clues of 60 APT groups, 2 malware families (Mozi ransomware and Banload\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/breadcrumbs.png\" \/>\n<meta name=\"twitter:label1\" content=\"Escrito por\" \/>\n\t<meta name=\"twitter:data1\" content=\"admin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. tempo de leitura\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutos\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\\\/\"},\"author\":{\"name\":\"admin\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/pt-br\\\/#\\\/schema\\\/person\\\/fd9ab61c9c77a81bbd870f725cc0c61d\"},\"headline\":\"Bread Crumbs of Threat Actors (Nov 21, 2022 \u2013 Dec 4, 2022)\",\"datePublished\":\"2022-12-22T01:30:07+00:00\",\"dateModified\":\"2026-04-17T18:07:42+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\\\/\"},\"wordCount\":250,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/pt-br\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/nsfocusglobal.com\\\/wp-content\\\/uploads\\\/2022\\\/12\\\/breadcrumbs.png\",\"keywords\":[\"APT Group;\"],\"articleSection\":[\"Blog\"],\"inLanguage\":\"pt-BR\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/nsfocusglobal.com\\\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\\\/\",\"url\":\"https:\\\/\\\/nsfocusglobal.com\\\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\\\/\",\"name\":\"Bread Crumbs of Threat Actors (Nov 21, 2022 \u2013 Dec 4, 2022) - NSFOCUS\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/pt-br\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/nsfocusglobal.com\\\/wp-content\\\/uploads\\\/2022\\\/12\\\/breadcrumbs.png\",\"datePublished\":\"2022-12-22T01:30:07+00:00\",\"dateModified\":\"2026-04-17T18:07:42+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\\\/#breadcrumb\"},\"inLanguage\":\"pt-BR\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/nsfocusglobal.com\\\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"pt-BR\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\\\/#primaryimage\",\"url\":\"https:\\\/\\\/nsfocusglobal.com\\\/wp-content\\\/uploads\\\/2022\\\/12\\\/breadcrumbs.png\",\"contentUrl\":\"https:\\\/\\\/nsfocusglobal.com\\\/wp-content\\\/uploads\\\/2022\\\/12\\\/breadcrumbs.png\",\"width\":399,\"height\":241,\"caption\":\"Breadcrumb trail on a dirt path.\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/nsfocusglobal.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Bread Crumbs of Threat Actors (Nov 21, 2022 \u2013 Dec 4, 2022)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/pt-br\\\/#website\",\"url\":\"https:\\\/\\\/nsfocusglobal.com\\\/pt-br\\\/\",\"name\":\"NSFOCUS\",\"description\":\"Security Made Smart and Simple\",\"publisher\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/pt-br\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/nsfocusglobal.com\\\/pt-br\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"pt-BR\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/pt-br\\\/#organization\",\"name\":\"NSFOCUS\",\"url\":\"https:\\\/\\\/nsfocusglobal.com\\\/pt-br\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"pt-BR\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/pt-br\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/nsfocusglobal.com\\\/wp-content\\\/uploads\\\/2024\\\/08\\\/logo-ns.png\",\"contentUrl\":\"https:\\\/\\\/nsfocusglobal.com\\\/wp-content\\\/uploads\\\/2024\\\/08\\\/logo-ns.png\",\"width\":248,\"height\":36,\"caption\":\"NSFOCUS\"},\"image\":{\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/pt-br\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/nsfocusglobal.com\\\/pt-br\\\/#\\\/schema\\\/person\\\/fd9ab61c9c77a81bbd870f725cc0c61d\",\"name\":\"admin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"pt-BR\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d3dc987908fc59791d261b1006d84eb931d15287261476b9384e690ed0c568de?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d3dc987908fc59791d261b1006d84eb931d15287261476b9384e690ed0c568de?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d3dc987908fc59791d261b1006d84eb931d15287261476b9384e690ed0c568de?s=96&d=mm&r=g\",\"caption\":\"admin\"},\"sameAs\":[\"https:\\\/\\\/nsfocusglobal.com\"],\"url\":\"https:\\\/\\\/nsfocusglobal.com\\\/pt-br\\\/author\\\/admin\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Bread Crumbs of Threat Actors (Nov 21, 2022 \u2013 Dec 4, 2022) - NSFOCUS","robots":{"index":"noindex","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"og_locale":"pt_BR","og_type":"article","og_title":"Bread Crumbs of Threat Actors (Nov 21, 2022 \u2013 Dec 4, 2022) - NSFOCUS","og_description":"From November 21, 2022 to December 4, 2022, NSFOCUS Security Labs found activity clues of 60 APT groups, 2 malware families (Mozi ransomware and Banload","og_url":"https:\/\/nsfocusglobal.com\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/","og_site_name":"NSFOCUS","article_published_time":"2022-12-22T01:30:07+00:00","article_modified_time":"2026-04-17T18:07:42+00:00","og_image":[{"url":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/breadcrumbs.png","type":"","width":"","height":""}],"author":"admin","twitter_card":"summary_large_image","twitter_title":"Bread Crumbs of Threat Actors (Nov 21, 2022 \u2013 Dec 4, 2022) - NSFOCUS","twitter_description":"From November 21, 2022 to December 4, 2022, NSFOCUS Security Labs found activity clues of 60 APT groups, 2 malware families (Mozi ransomware and Banload","twitter_image":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/breadcrumbs.png","twitter_misc":{"Escrito por":"admin","Est. tempo de leitura":"3 minutos"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/nsfocusglobal.com\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/#article","isPartOf":{"@id":"https:\/\/nsfocusglobal.com\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/"},"author":{"name":"admin","@id":"https:\/\/nsfocusglobal.com\/pt-br\/#\/schema\/person\/fd9ab61c9c77a81bbd870f725cc0c61d"},"headline":"Bread Crumbs of Threat Actors (Nov 21, 2022 \u2013 Dec 4, 2022)","datePublished":"2022-12-22T01:30:07+00:00","dateModified":"2026-04-17T18:07:42+00:00","mainEntityOfPage":{"@id":"https:\/\/nsfocusglobal.com\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/"},"wordCount":250,"commentCount":0,"publisher":{"@id":"https:\/\/nsfocusglobal.com\/pt-br\/#organization"},"image":{"@id":"https:\/\/nsfocusglobal.com\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/#primaryimage"},"thumbnailUrl":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/breadcrumbs.png","keywords":["APT Group;"],"articleSection":["Blog"],"inLanguage":"pt-BR","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/nsfocusglobal.com\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/nsfocusglobal.com\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/","url":"https:\/\/nsfocusglobal.com\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/","name":"Bread Crumbs of Threat Actors (Nov 21, 2022 \u2013 Dec 4, 2022) - NSFOCUS","isPartOf":{"@id":"https:\/\/nsfocusglobal.com\/pt-br\/#website"},"primaryImageOfPage":{"@id":"https:\/\/nsfocusglobal.com\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/#primaryimage"},"image":{"@id":"https:\/\/nsfocusglobal.com\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/#primaryimage"},"thumbnailUrl":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/breadcrumbs.png","datePublished":"2022-12-22T01:30:07+00:00","dateModified":"2026-04-17T18:07:42+00:00","breadcrumb":{"@id":"https:\/\/nsfocusglobal.com\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/#breadcrumb"},"inLanguage":"pt-BR","potentialAction":[{"@type":"ReadAction","target":["https:\/\/nsfocusglobal.com\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/"]}]},{"@type":"ImageObject","inLanguage":"pt-BR","@id":"https:\/\/nsfocusglobal.com\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/#primaryimage","url":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/breadcrumbs.png","contentUrl":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2022\/12\/breadcrumbs.png","width":399,"height":241,"caption":"Breadcrumb trail on a dirt path."},{"@type":"BreadcrumbList","@id":"https:\/\/nsfocusglobal.com\/bread-crumbs-of-threat-actors-nov-21-2022-dec-4-2022\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/nsfocusglobal.com\/"},{"@type":"ListItem","position":2,"name":"Bread Crumbs of Threat Actors (Nov 21, 2022 \u2013 Dec 4, 2022)"}]},{"@type":"WebSite","@id":"https:\/\/nsfocusglobal.com\/pt-br\/#website","url":"https:\/\/nsfocusglobal.com\/pt-br\/","name":"NSFOCUS","description":"Security Made Smart and Simple","publisher":{"@id":"https:\/\/nsfocusglobal.com\/pt-br\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/nsfocusglobal.com\/pt-br\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"pt-BR"},{"@type":"Organization","@id":"https:\/\/nsfocusglobal.com\/pt-br\/#organization","name":"NSFOCUS","url":"https:\/\/nsfocusglobal.com\/pt-br\/","logo":{"@type":"ImageObject","inLanguage":"pt-BR","@id":"https:\/\/nsfocusglobal.com\/pt-br\/#\/schema\/logo\/image\/","url":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2024\/08\/logo-ns.png","contentUrl":"https:\/\/nsfocusglobal.com\/wp-content\/uploads\/2024\/08\/logo-ns.png","width":248,"height":36,"caption":"NSFOCUS"},"image":{"@id":"https:\/\/nsfocusglobal.com\/pt-br\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/nsfocusglobal.com\/pt-br\/#\/schema\/person\/fd9ab61c9c77a81bbd870f725cc0c61d","name":"admin","image":{"@type":"ImageObject","inLanguage":"pt-BR","@id":"https:\/\/secure.gravatar.com\/avatar\/d3dc987908fc59791d261b1006d84eb931d15287261476b9384e690ed0c568de?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/d3dc987908fc59791d261b1006d84eb931d15287261476b9384e690ed0c568de?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d3dc987908fc59791d261b1006d84eb931d15287261476b9384e690ed0c568de?s=96&d=mm&r=g","caption":"admin"},"sameAs":["https:\/\/nsfocusglobal.com"],"url":"https:\/\/nsfocusglobal.com\/pt-br\/author\/admin\/"}]}},"_links":{"self":[{"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/posts\/22406","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/comments?post=22406"}],"version-history":[{"count":0,"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/posts\/22406\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/media\/22425"}],"wp:attachment":[{"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/media?parent=22406"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/categories?post=22406"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nsfocusglobal.com\/pt-br\/wp-json\/wp\/v2\/tags?post=22406"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}