Salt Typhoon

MITRE

Tipo:
Unknown

Paese:
Unknown

Prima attivita:
Unknown

Dettagli:

[Salt Typhoon](https://attack.mitre.org/groups/G1045) is a People's Republic of China (PRC) state-backed actor that has been active since at least 2019 and responsible for numerous compromises of network infrastructure at major U.S. telecommunication and internet service providers (ISP).(Citation: US Dept. of Treasury Salt Typhoon JAN 2025)(Citation: Cisco Salt Typhoon FEB 2025)

MITRE ATT&CK: View on MITRE

Tecniche Utilizzate (14)

ID	ATT&CK	Tattiche
T1021.004	SSH	-
T1040	Network Sniffing	-
T1048.003	Exfiltration Over Unencrypted Non-C2 Protocol	-
T1070.002	Clear Linux or Mac System Logs	-
T1098.004	SSH Authorized Keys	-
T1110.002	Password Cracking	-
T1136	Create Account	-
T1190	Exploit Public-Facing Application	-
T1562.004	Disable or Modify System Firewall	-
T1572	Protocol Tunneling	-
T1587.001	Malware	-
T1588.002	Tool	-
T1590.004	Network Topology	-
T1602.002	Network Device Configuration Dump	-

Malware Utilizzato (1)

JumbledPath
other

Metadata

ID:	920
Created:	13/01/2026 17:48
Updated:	06/03/2026 16:00