Campaign · all campaigns
FrostyGoop IncidentC0041 unknown
aka FrostyGoop Incident
Last updated: 2026-07-03
0attributed CVEs
7ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
—years active
About this actor
[FrostyGoop Incident](https://attack.mitre.org/campaigns/C0041) took place in January 2024 against a municipal district heating company in Ukraine. Following initial access via likely exploitation of external facing services, [FrostyGoop](https://attack.mitre.org/software/S1165) was used to manipulate ENCO control systems via legitimate Modbus commands to impact the delivery of heating services to Ukrainian civilians.(Citation: Dragos FROSTYGOOP 2024)(Citation: Nozomi BUSTLEBERM 2024)
Source: MITRE ATT&CK
Activity timeline
No activity events recorded.
Profile
| CVE | Risk | CVSS | EPSS | Published | Products |
|---|---|---|---|---|---|
| No attributed CVEs. | |||||
Mitigating controls (NIST 800-53)
| Control | Techniques covered | Coverage |
|---|---|---|
CM-6 | 7 / 7 | 100% |
SI-4 | 7 / 7 | 100% |
CM-2 | 6 / 7 | 86% |
AC-2 | 5 / 7 | 71% |
AC-3 | 5 / 7 | 71% |
AC-5 | 5 / 7 | 71% |
AC-6 | 5 / 7 | 71% |
CM-7 | 5 / 7 | 71% |
CA-7 | 4 / 7 | 57% |
CM-5 | 4 / 7 | 57% |
IA-2 | 4 / 7 | 57% |
RA-5 | 4 / 7 | 57% |
SI-3 | 4 / 7 | 57% |
SI-7 | 4 / 7 | 57% |
AC-4 | 3 / 7 | 43% |
Co-occurring actors
None.
Similar actors
Similar TTPs
- Volatile Cedar 0.27
- Versa Director Zero Day Exploitation 0.25
- Agrius 0.16
- C0017 0.15
- Operation Digital Eye 0.13