TA578
TA578 is a threat actor that has used contact forms and email to initiate communications with victims and to distribute malware including Latrodectus, IcedID, and Bumblebee.
Attribution signal
?Score = mentions × confidence weight, summed across all attributed sources. Higher source diversity increases the score.≥ 10 High≥ 3 Moderate< 3 Low0.0
None signal strength
Mentions0
Sources0
High conf.0
First observed
2024-09-17
Last active
—
Origin
Unknown — financially motivated cybercriminal group
Aliases
1
Techniques
4
Campaigns
0
Attribution signals
No attribution signals extracted yet — signals populate automatically as articles are processed.