0attributed CVEs
11ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
—years active
About this actor
[POLONIUM](https://attack.mitre.org/groups/G1005) is a Lebanon-based group that has primarily targeted Israeli organizations, including critical manufacturing, information technology, and defense industry companies, since at least February 2022. Security researchers assess [POLONIUM](https://attack.mitre.org/groups/G1005) has coordinated their operations with multiple actors affiliated with Iran’s Ministry of Intelligence and Security (MOIS), based on victim overlap as well as common techniques and tooling.(Citation: Microsoft POLONIUM June 2022)
Source: MITRE ATT&CK
Activity timeline
No activity events recorded.
Profile
| CVE | Risk | CVSS | EPSS | Published | Products |
|---|---|---|---|---|---|
| No attributed CVEs. | |||||
Mitigating controls (NIST 800-53)
| Control | Techniques covered | Coverage |
|---|---|---|
SC-7 | 7 / 11 | 64% |
AC-4 | 6 / 11 | 55% |
CA-7 | 5 / 11 | 45% |
CM-6 | 5 / 11 | 45% |
CM-7 | 5 / 11 | 45% |
SI-4 | 5 / 11 | 45% |
AC-3 | 4 / 11 | 36% |
SI-3 | 4 / 11 | 36% |
AC-6 | 3 / 11 | 27% |
CM-2 | 3 / 11 | 27% |
AC-2 | 2 / 11 | 18% |
AC-20 | 2 / 11 | 18% |
CA-3 | 2 / 11 | 18% |
SA-8 | 2 / 11 | 18% |
SC-28 | 2 / 11 | 18% |
Co-occurring actors
None.
Similar actors
Similar TTPs
- SPACEHOP Activity 0.29
- PittyTiger 0.27
- Carbanak 0.25
- IndigoZebra 0.21
- Cinnamon Tempest 0.19