Date of report
- Apr 2017
Affiliations
- Also known as Cloud Hopper, Red Apollo, CNVX, Stone Panda, MenuPass, and POTASSIUM. Believed to be a part of the Tianjin bureau of the Chinese Ministry of State Security.
Also known as TA410. This threat actor targets managed information technology service providers to access client information for espionage purposes. APT 10 has been active since at least 2009.
Suspected victims
- Japan, United States, United Kingdom, India, Canada, Brazil, South Africa, Australia, Thailand, South Korea, France, Switzerland, Sweden, Finland, Norway, New Zealand
Suspected state sponsor
- China
Type of incident
- Espionage
Target category
- Government
- Private sector
Victim government reaction
- Unknown
Read more
- Operation Cloud Hopper
- APT 10: Operation Cloud Hopper
- APT10 (MenuPass Group): New Tools, Global Campaign Latest Manifestation of Longstanding Threat
- Operation Dust Storm [PDF]
- APT10 was managed by the Tianjin bureau of the Chinese Ministry of State Security
- Two Birds, One STONE PANDA
- Alert (TA17-117A): Intrusions Affecting Multiple Victims Across Multiple Sectors
- Department of Justice Charges Two Chinese Hackers Associated with APT 10