Campaign · all campaigns
J-magic CampaignC0050 unknown
aka J-magic Campaign
Last updated: 2026-07-03
0attributed CVEs
8ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
—years active
About this actor
The [J-magic Campaign](https://attack.mitre.org/campaigns/C0050) was active from mid-2023 to at least mid-2024 and featured the use of the [J-magic](https://attack.mitre.org/software/S1203) backdoor, a custom cd00r variant tailored for use against Juniper routers. The [J-magic Campaign](https://attack.mitre.org/campaigns/C0050) targeted Junos OS routers serving as VPN gateways primarily in the semiconductor, energy, manufacturing, and IT sectors. (Citation: Lumen J-Magic JAN 2025)
Source: MITRE ATT&CK
Activity timeline
No activity events recorded.
Profile
| CVE | Risk | CVSS | EPSS | Published | Products |
|---|---|---|---|---|---|
| No attributed CVEs. | |||||
Mitigating controls (NIST 800-53)
| Control | Techniques covered | Coverage |
|---|---|---|
AC-2 | 2 / 8 | 25% |
AC-3 | 2 / 8 | 25% |
AC-6 | 2 / 8 | 25% |
CA-7 | 2 / 8 | 25% |
CM-2 | 2 / 8 | 25% |
CM-6 | 2 / 8 | 25% |
CM-7 | 2 / 8 | 25% |
IA-9 | 2 / 8 | 25% |
SI-10 | 2 / 8 | 25% |
SI-3 | 2 / 8 | 25% |
SI-4 | 2 / 8 | 25% |
SI-7 | 2 / 8 | 25% |
Co-occurring actors
None.
Similar actors
Similar TTPs
- Ferocious Kitten 0.27
- SPACEHOP Activity 0.25
- Triton Safety Instrumented System Attack 0.18
- PROMETHIUM 0.17
- Aoqin Dragon 0.17