Rocke is a threat actor, also known as Aged Libra. This group is tracked in the Strobes VI threat intelligence database.

What vulnerabilities does Rocke exploit?

Specific CVE exploitation data for Rocke is being tracked. Check the Strobes VI threat actor profile for updates.

Rocke

Also known as: Aged Libra

Exploited CVEs

Overview

This threat actor initially came to our attention in April 2018, leveraging both Western and Chinese Git repositories to deliver malware to honeypot systems vulnerable to an Apache Struts vulnerability. In late July, we became aware that the same actor was engaged in another similar campaign. Through our investigation into this new campaign, we were able to uncover more details about the actor.

Exploited Vulnerabilities

No exploited CVEs have been attributed to this threat actor yet.

Browse CVE Database