About this actor
[LuminousMoth](https://attack.mitre.org/groups/G1014) is a Chinese-speaking cyber espionage group that has been active since at least October 2020. [LuminousMoth](https://attack.mitre.org/groups/G1014) has targeted high-profile organizations, including government entities, in Myanmar, the Philippines, Thailand, and other parts of Southeast Asia. Some security researchers have concluded there is a connection between [LuminousMoth](https://attack.mitre.org/groups/G1014) and [Mustang Panda](https://attack.mitre.org/groups/G0129) based on similar targeting and TTPs, as well as network infrastructure overlaps.(Citation: Kaspersky LuminousMoth July 2021)(Citation: Bitdefender LuminousMoth July 2021)
Source: MITRE ATT&CK
Activity timeline
No activity events recorded.
Profile
| CVE | Risk | CVSS | EPSS | Published | Products |
|---|---|---|---|---|---|
| No attributed CVEs. | |||||
Mitigating controls (NIST 800-53)
| Control | Techniques covered | Coverage |
|---|---|---|
SI-4 | 23 / 42 | 55% |
CM-2 | 20 / 42 | 48% |
SI-3 | 20 / 42 | 48% |
CM-6 | 19 / 42 | 45% |
CA-7 | 16 / 42 | 38% |
CM-7 | 15 / 42 | 36% |
AC-4 | 14 / 42 | 33% |
SC-7 | 14 / 42 | 33% |
AC-3 | 13 / 42 | 31% |
AC-6 | 12 / 42 | 29% |
AC-2 | 9 / 42 | 21% |
SI-7 | 9 / 42 | 21% |
RA-5 | 8 / 42 | 19% |
SI-10 | 8 / 42 | 19% |
CM-8 | 7 / 42 | 17% |
Co-occurring actors
None.
Similar actors
Similar TTPs
- RedDelta Modified PlugX Infection Chain Operations 0.32
- Patchwork 0.28
- FIN7 0.27
- Confucius 0.27
- Mustang Panda 0.27