0attributed CVEs
8ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
—years active
About this actor
[RedEcho](https://attack.mitre.org/groups/G1042) is a People’s Republic of China-related threat actor associated with long-running intrusions in Indian critical infrastructure entities. [RedEcho](https://attack.mitre.org/groups/G1042) overlaps with various other PRC-linked threat groups, such as [APT41](https://attack.mitre.org/groups/G0096), and is linked to [ShadowPad](https://attack.mitre.org/software/S0596) malware use through shared infrastructure.(Citation: RecordedFuture RedEcho 2021)(Citation: RecordedFuture RedEcho 2022)
Source: MITRE ATT&CK
Activity timeline
No activity events recorded.
Profile
| CVE | Risk | CVSS | EPSS | Published | Products |
|---|---|---|---|---|---|
| No attributed CVEs. | |||||
Mitigating controls (NIST 800-53)
| Control | Techniques covered | Coverage |
|---|---|---|
AC-4 | 6 / 8 | 75% |
CA-7 | 6 / 8 | 75% |
SC-7 | 6 / 8 | 75% |
SI-3 | 6 / 8 | 75% |
SI-4 | 6 / 8 | 75% |
CM-2 | 5 / 8 | 62% |
CM-6 | 5 / 8 | 62% |
CM-7 | 5 / 8 | 62% |
SC-23 | 4 / 8 | 50% |
SC-20 | 3 / 8 | 38% |
SC-21 | 3 / 8 | 38% |
SC-22 | 3 / 8 | 38% |
SC-10 | 2 / 8 | 25% |
SC-12 | 2 / 8 | 25% |
SC-16 | 2 / 8 | 25% |
Co-occurring actors
None.
Similar actors
Similar TTPs
- Indian Critical Infrastructure Intrusions 0.67
- Versa Director Zero Day Exploitation 0.24
- C0026 0.23
- C0021 0.21
- BITTER 0.21