Cyber Resilience

Campaign · all campaigns

Operation SharpshooterC0013 unknown

aka Operation Sharpshooter

Last updated: 2026-07-03

0attributed CVEs
22ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
years active

About this actor

[Operation Sharpshooter](https://attack.mitre.org/campaigns/C0013) was a global cyber espionage campaign that targeted nuclear, defense, government, energy, and financial companies, with many located in Germany, Turkey, the United Kingdom, and the United States. Security researchers noted the campaign shared many similarities with previous [Lazarus Group](https://attack.mitre.org/groups/G0032) operations, including fake job recruitment lures and shared malware code.(Citation: McAfee Sharpshooter December 2018)(Citation: Bleeping Computer Op Sharpshooter March 2019)(Citation: Threatpost New Op Sharpshooter Data March 2019)

Source: MITRE ATT&CK

Activity timeline

No activity events recorded.

Profile

CVERiskCVSSEPSSPublishedProducts
No attributed CVEs.

Mitigating controls (NIST 800-53)

ControlTechniques coveredCoverage
CM-612 / 2255%
SI-312 / 2255%
SI-412 / 2255%
CM-211 / 2250%
CM-711 / 2250%
AC-68 / 2236%
CA-78 / 2236%
AC-37 / 2232%
SC-77 / 2232%
SI-107 / 2232%
SI-27 / 2232%
AC-26 / 2227%
AC-46 / 2227%
SI-76 / 2227%
SC-185 / 2223%

Co-occurring actors

None.

Similar actors

Similar TTPs