0attributed CVEs
43ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
—years active
About this actor
[Night Dragon](https://attack.mitre.org/campaigns/C0002) was a cyber espionage campaign that targeted oil, energy, and petrochemical companies, along with individuals and executives in Kazakhstan, Taiwan, Greece, and the United States. The unidentified threat actors searched for information related to oil and gas field production systems, financials, and collected data from SCADA systems. Based on the observed techniques, tools, and network activities, security researchers assessed the campaign involved a threat group based in China.(Citation: McAfee Night Dragon)
Source: MITRE ATT&CK
Activity timeline
No activity events recorded.
Profile
| CVE | Risk | CVSS | EPSS | Published | Products |
|---|---|---|---|---|---|
| No attributed CVEs. | |||||
Mitigating controls (NIST 800-53)
| Control | Techniques covered | Coverage |
|---|---|---|
SI-4 | 26 / 43 | 60% |
CM-6 | 24 / 43 | 56% |
SI-3 | 20 / 43 | 47% |
CM-2 | 19 / 43 | 44% |
CA-7 | 18 / 43 | 42% |
AC-3 | 17 / 43 | 40% |
CM-7 | 16 / 43 | 37% |
AC-4 | 15 / 43 | 35% |
AC-6 | 15 / 43 | 35% |
SC-7 | 14 / 43 | 33% |
AC-2 | 13 / 43 | 30% |
IA-2 | 13 / 43 | 30% |
SI-7 | 13 / 43 | 30% |
AC-5 | 11 / 43 | 26% |
CM-5 | 9 / 43 | 21% |
Co-occurring actors
None.
Similar actors
Similar TTPs
- TA505 0.32
- Operation Spalax 0.29
- C0021 0.28
- Sea Turtle 0.28
- GALLIUM 0.28
Same nation-state
- FunnyDream 1.00
- Operation Wocao 1.00
- C0017 1.00
- Cutting Edge 1.00
- KV Botnet Activity 1.00
Same category
- FunnyDream 1.00
- C0011 1.00
- Operation Wocao 1.00
- Operation Dream Job 1.00
- Operation Ghost 1.00