Cyber Resilience

Threat actor · all actors

BlackTechG0098 state

🇨🇳 CN

aka BlackTech, Palmerworm

Last updated: 2026-07-03

0attributed CVEs
20ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
years active

About this actor

[BlackTech](https://attack.mitre.org/groups/G0098) is a suspected Chinese cyber espionage group that has primarily targeted organizations in East Asia--particularly Taiwan, Japan, and Hong Kong--and the US since at least 2013. [BlackTech](https://attack.mitre.org/groups/G0098) has used a combination of custom malware, dual-use tools, and living off the land tactics to compromise media, construction, engineering, electronics, and financial company networks.(Citation: TrendMicro BlackTech June 2017)(Citation: Symantec Palmerworm Sep 2020)(Citation: Reuters Taiwan BlackTech August 2020)

Source: MITRE ATT&CK

Activity timeline

No activity events recorded.

Profile

CVERiskCVSSEPSSPublishedProducts
No attributed CVEs.

Mitigating controls (NIST 800-53)

ControlTechniques coveredCoverage
SI-415 / 2075%
CM-614 / 2070%
CM-213 / 2065%
SI-313 / 2065%
CA-711 / 2055%
AC-410 / 2050%
CM-710 / 2050%
SC-79 / 2045%
SI-29 / 2045%
AC-67 / 2035%
SC-447 / 2035%
SI-77 / 2035%
RA-56 / 2030%
SI-106 / 2030%
SI-86 / 2030%

Co-occurring actors

None.

Similar actors

Same nation-state