- A collection of companies that disclose adversary TTPs after they have been breached
- Useful for analysis of intrusions launched by adversaries with measurable effects and impact
Organization | Breach Date | Adversary | Source |
---|---|---|---|
Dragos | May 2023 | Unknown | dragos.com / (archived) |
3CX | March 2023 | UNC4736 | mandiant.com / (archived) |
Coinbase | February 2023 | 0ktapus (suspected) | coinbase.com / (archived) |
February 2023 | 0ktapus (suspected) | reddit.com / (archived) | |
CircleCI | January 2023 | Unknown | circleci.com / (archived) |
LastPass | October 2022 | Unknown | blog.lastpass.com / (archived) |
Uber | September 2022 | Lapsus$ (suspected) | uber.com / (archived) |
Okta | August 2022 | 0ktapus | sec.okta.com / (archived) |
Twilio | August 2022 | 0ktapus | twilio.com / (archived) |
Cisco | May 2022 | Yanluowang | blog.talosintelligence.com / (archived) |
GitHub | April 2022 | Unknown | github.blog / (archived) |
Microsoft | March 2022 | Lapsus$ | microsoft.com / (archived) |
Kaseya | July 2021 | Unknown | helpdesk.kaseya.com / (archived) |
Viasat KA-SAT | February 2022 | Sandworm (GRU) | news.viasat.com / (archived) |
Irish HSE | May 2021 | Conti | hse.ie / (archived) |
New Zealand Reserve Bank | January 2021 | FIN11 | rbnz.govt.nz / (archived) |
SolarWinds | December 2020 | CozyBear (SVR) | solarwinds.com / (archived) |
Equinix | September 2020 | Netwalker | datacenterdynamics.com / (archived) |
Avast/CCleaner | September 2016 | WickedPanda (MSS) | blog.avast,com / (archived) |
Kaspersky | June 2015 | Duqu 2.0 | kaspersky.com / (archived) |