HAFNIUM
Coverage omission — Eastern
HAFNIUM is a likely state-sponsored cyber espionage group operating out of China that has been active since at least January 2021. HAFNIUM primarily targets entities in the US across a number of industry sectors, including infectious disease researchers, law firms, higher education institutions, defense contractors, policy think tanks, and NGOs. HAFNIUM has targeted remote management tools and cloud software for intial access and has demonstrated an ability to quickly operationalize exploits for identified vulnerabilities in edge devices.
Attribution signal
?Score = mentions × confidence weight, summed across all attributed sources. Higher source diversity increases the score.≥ 10 High≥ 3 Moderate< 3 Low0.0
None signal strength
Mentions0
Sources0
High conf.0
First observed
2021-03-03
Last active
Active
Origin
China — attributed by US, EU, NATO, and Five Eyes governments
Aliases
5
Techniques
44
Campaigns
0
China — attributed by US, EU, NATO, and Five Eyes governmentsconsensus confidence
TargetsGovernmentDefenceLegalNGOThink Tank
RegionsUsEuGlobal
Attribution signals
No attribution signals extracted yet — signals populate automatically as articles are processed.