0attributed CVEs
15ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
—years active
About this actor
[CostaRicto](https://attack.mitre.org/campaigns/C0004) was a suspected hacker-for-hire cyber espionage campaign that targeted multiple industries worldwide, with a large number being financial institutions. [CostaRicto](https://attack.mitre.org/campaigns/C0004) actors targeted organizations in Europe, the Americas, Asia, Australia, and Africa, with a large concentration in South Asia (especially India, Bangladesh, and Singapore), using custom malware, open source tools, and a complex network of proxies and SSH tunnels.(Citation: BlackBerry CostaRicto November 2020)
Source: MITRE ATT&CK
Activity timeline
No activity events recorded.
Profile
| CVE | Risk | CVSS | EPSS | Published | Products |
|---|---|---|---|---|---|
| No attributed CVEs. | |||||
Mitigating controls (NIST 800-53)
| Control | Techniques covered | Coverage |
|---|---|---|
CM-6 | 8 / 15 | 53% |
CM-7 | 8 / 15 | 53% |
SI-4 | 8 / 15 | 53% |
AC-3 | 7 / 15 | 47% |
CM-2 | 7 / 15 | 47% |
AC-4 | 6 / 15 | 40% |
SC-7 | 6 / 15 | 40% |
CA-7 | 5 / 15 | 33% |
SI-3 | 5 / 15 | 33% |
AC-6 | 4 / 15 | 27% |
CM-8 | 4 / 15 | 27% |
RA-5 | 4 / 15 | 27% |
AC-2 | 3 / 15 | 20% |
IA-2 | 3 / 15 | 20% |
SI-10 | 3 / 15 | 20% |
Co-occurring actors
None.
Similar actors
Similar TTPs
- C0010 0.32
- SPACEHOP Activity 0.29
- IndigoZebra 0.23
- Triton Safety Instrumented System Attack 0.22
- C0026 0.21