Carderbee

MISP

Type:
Unknown

Country:
Unknown

First seen:
Unknown

Details:

Symantec recently reported on activity attributed to a threat actor group dubbed Carderbee. In the campaign, the threat actors target entities in Hong Kong and other regions of Asia via a supply chain attack leveraging the legitimate Cobra DocGuard software. The activity began as early as September 2022.

References (3)

blog.eclecticiq.com - Chinese State Sponsored Cyber Espionage Activity Targeting Semiconductor Industry In East Asia
blog.polyswarm.io - Carderbee Targets Hong Kong In Supply Chain Attack
symantec-enterprise-blogs.security.com - Carderbee Software Supply Chain Certificate Abuse

Metadata

ID:	454
Created:	13/01/2026 17:48
Updated:	07/03/2026 04:00