Poseidon Group | APT Profile

Description

[Poseidon Group](https://attack.mitre.org/groups/G0033) is a Portuguese-speaking threat group that has been active since at least 2005. The group has a history of using information exfiltrated from victims to blackmail victim companies into contracting the [Poseidon Group](https://attack.mitre.org/groups/G0033) as a security firm. (Citation: Kaspersky Poseidon Group)

Techniques Used (TTPs)

T1049 — System Network Connections Discovery (discovery)
T1003 — OS Credential Dumping (credential-access)
T1007 — System Service Discovery (discovery)
T1087.002 — Domain Account (discovery)
T1087.001 — Local Account (discovery)
T1057 — Process Discovery (discovery)
T1036.005 — Match Legitimate Resource Name or Location (defense-evasion)
T1059.001 — PowerShell (execution)

Total TTPs: 8

← Return to Home ← Back to APT Search