Muddled Libra is a loosely organized group of cybercriminal personas that operate in flexible teams with unique tradecraft and objectives, evolving over time across various industries. Understanding the signatures of these teams and their shifting targets can help organizations develop predictive defenses and better protect their assets. #MuddledLibra #CybercriminalTeams
Keypoints
- Muddled Libra operates as a loose collection of personas forming dynamic, interrelated attack teams.
- Each team has distinct tradecraft which becomes signature-based and helps track their evolution.
- Teams primarily target cryptocurrency, but also expand into media, retail, finance, and transportation sectors.
- Attack objectives include cryptocurrency theft, intellectual property theft, extortion, credential harvesting, and data harvesting.
- Organizations should focus on protecting high-value data and strengthening defense-in-depth strategies to mitigate risks.
Read More: https://unit42.paloaltonetworks.com/muddled-libras-strike-teams/