MirrorFace is a threat actor attributed to CN, also known as Earth Kasha. This group is tracked in the Strobes VI threat intelligence database.

What vulnerabilities does MirrorFace exploit?

Specific CVE exploitation data for MirrorFace is being tracked. Check the Strobes VI threat actor profile for updates.

MirrorFace

Also known as: Earth Kasha

Exploited CVEs

Overview

MirrorFace is a Chinese-speaking advanced persistent threat group that has been targeting high-value organizations in Japan, including media, government, diplomatic, and political entities. They have been conducting spear-phishing campaigns, utilizing malware such as LODEINFO and MirrorStealer to steal credentials and exfiltrate sensitive data. While there is speculation about their connection to APT10, ESET currently track them as a separate entity.

Exploited Vulnerabilities

No exploited CVEs have been attributed to this threat actor yet.

Browse CVE Database

Quick Actions