china
BRONZE DUDLEY
Objectives
Aliases
Tools
SUMMARY
BRONZE DUDLEY has used weaponized RTF documents to deploy the PoisonIvy remote access trojan against targets in Mongolia and potentially, based on third party reporting, other government and commercial targets in East Asia and more broadly. Observed targeting, tools and infrastructure lead CTU researchers to assess with moderate confidence that BRONZE DUDLEY operates on behalf of China. There are potential overlaps between BRONZE DUDLEY and the BRONZE PRESIDENT and BRONZE HUNTLEY threat groups. However, CTU researchers currently track them as three distinct clusters of activity.
Contact Us
Contact us directly whether your organization needs immediate assistance or you want to discuss your incident readiness, response, and testing needs.