APT31 is a threat actor attributed to CN, also known as ZIRCONIUM, JUDGMENT PANDA, Zirconium. This group is tracked in the Strobes VI threat intelligence database.

What vulnerabilities does APT31 exploit?

APT31 is known to exploit 1 CVEs. View the full list on the Strobes VI threat actor profile page.

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001

APT31

Also known as: ZIRCONIUM, JUDGMENT PANDA, Zirconium, TA412, Violet Typhoon, Judgment Panda, Bronze Vinewood, WebFans, APT 31, Chameleon, BRONZE VINEWOOD, RedBravo, Red Keres, APT31, G0128, Red keres

CNInformation theft and espionage

Exploited CVEs

Overview

FireEye characterizes APT31 as an actor specialized on intellectual property theft, focusing on data and projects that make a particular organization competetive in its field. Based on available data (April 2016), FireEye assesses that APT31 conducts network operations at the behest of the Chinese Government. Also according to Crowdstrike, this adversary is suspected of continuing to target upstream providers (e.g., law firms and managed service providers) to support additional intrusions against high-profile assets. In 2018, CrowdStrike observed this adversary using spear-phishing, URL “web bugs” and scheduled tasks to automate credential harvesting.

Exploited Vulnerabilities

CVE ID	Action
CVE-2017-0005