0attributed CVEs
42ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
—years active
About this actor
[TA2541](https://attack.mitre.org/groups/G1018) is a cybercriminal group that has been targeting the aviation, aerospace, transportation, manufacturing, and defense industries since at least 2017. [TA2541](https://attack.mitre.org/groups/G1018) campaigns are typically high volume and involve the use of commodity remote access tools obfuscated by crypters and themes related to aviation, transportation, and travel.(Citation: Proofpoint TA2541 February 2022)(Citation: Cisco Operation Layover September 2021)
Source: MITRE ATT&CK
Activity timeline
No activity events recorded.
Profile
| CVE | Risk | CVSS | EPSS | Published | Products |
|---|---|---|---|---|---|
| No attributed CVEs. | |||||
Mitigating controls (NIST 800-53)
| Control | Techniques covered | Coverage |
|---|---|---|
SI-4 | 25 / 42 | 60% |
SI-3 | 24 / 42 | 57% |
CM-6 | 22 / 42 | 52% |
CM-2 | 21 / 42 | 50% |
CM-7 | 17 / 42 | 40% |
CA-7 | 16 / 42 | 38% |
SC-7 | 13 / 42 | 31% |
SI-7 | 13 / 42 | 31% |
AC-3 | 12 / 42 | 29% |
AC-6 | 12 / 42 | 29% |
SI-2 | 12 / 42 | 29% |
AC-2 | 11 / 42 | 26% |
AC-4 | 11 / 42 | 26% |
RA-5 | 10 / 42 | 24% |
SI-10 | 9 / 42 | 21% |
Co-occurring actors
None.
Similar actors
Similar TTPs
- LazyScripter 0.47
- APT-C-36 0.41
- Operation Spalax 0.40
- Operation Dust Storm 0.38
- BITTER 0.36