Cymulate named a Customers' Choice in 2025 Gartner® Peer Insights™
Learn More
New Gartner® Report: Strategic Roadmap for CTEM
Learn More
New Integration Partnership with WIZ!
Learn More
Threat Exposure Validation Impact Report 2025
Learn More
Book a Demo
Book a Demo

Bluebottle Attacks The Financial Sector In Africa

January 10, 2023

The Bluebottle threat group, also known as Common Raven and OPERA1ER, targeted the financial sector in French speaking countries in Africa with a range of dual-use tools, commodity malware, and living-of-the-land utilities. The various tools and malicious software were used for discovery, network tunneling, persistence, and defense evasion. The Netwire and Quasar RATs along with Cobalt Strike, GuLoader, Mimikatz, and multiple Microsoft Windows command-line utilities were used to carry out the operation.

Featured Resources

View More Resources
image
blog

Cymulate Aligns Platform to MITRE ATT&CK v18

Cymulate continues to stay ahead of the curve by aligning our platform with the latest developments in the MITRE ATT&CK® framework. With

Read More
image
Whitepaper

Cymulate Exposure Management: Product Whitepaper

An inside look at the technology behind Cymulate Gain a concise, technical view of how Cymulate unifies exposure discovery, validation

Learn More
image
blog

Threat Exposure Management: Driving Proactive Cybersecurity Outcomes

Organizations are up against a threat landscape that evolves faster than most defenses can adapt. Staying ahead requires more than

Read More