Cold River is a threat actor, also known as Nahr Elbard, Nahr el bared. This group is tracked in the Strobes VI threat intelligence database.

What vulnerabilities does Cold River exploit?

Specific CVE exploitation data for Cold River is being tracked. Check the Strobes VI threat actor profile for updates.

Cold River

Also known as: Nahr Elbard, Nahr el bared

Exploited CVEs

Overview

In short, “Cold River” is a sophisticated threat (actor) that utilizes DNS subdomain hijacking, certificate spoofing, and covert tunneled command and control traffic in combination with complex and convincing lure documents and custom implants.

Exploited Vulnerabilities

No exploited CVEs have been attributed to this threat actor yet.

Browse CVE Database

Quick Actions