Cyber Resilience

Threat actor · all actors

ConfuciusG0142 unknown

aka Confucius, Confucius APT

Last updated: 2026-07-03

0attributed CVEs
28ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
years active

About this actor

[Confucius](https://attack.mitre.org/groups/G0142) is a cyber espionage group that has primarily targeted military personnel, high-profile personalities, business persons, and government organizations in South Asia since at least 2013. Security researchers have noted similarities between [Confucius](https://attack.mitre.org/groups/G0142) and [Patchwork](https://attack.mitre.org/groups/G0040), particularly in their respective custom malware code and targets.(Citation: TrendMicro Confucius APT Feb 2018)(Citation: TrendMicro Confucius APT Aug 2021)(Citation: Uptycs Confucius APT Jan 2021)

Source: MITRE ATT&CK

Activity timeline

No activity events recorded.

Profile

CVERiskCVSSEPSSPublishedProducts
No attributed CVEs.

Mitigating controls (NIST 800-53)

ControlTechniques coveredCoverage
SI-421 / 2875%
CM-218 / 2864%
CM-618 / 2864%
SI-318 / 2864%
CA-716 / 2857%
SC-715 / 2854%
AC-414 / 2850%
CM-713 / 2846%
CM-810 / 2836%
SI-710 / 2836%
AC-69 / 2832%
RA-59 / 2832%
SI-29 / 2832%
AC-28 / 2829%
AC-38 / 2829%

Co-occurring actors

None.

Similar actors

Similar TTPs