ToddyCat is a threat actor attributed to CN, also known as Storm-0247, Websiic. This group is tracked in the Strobes VI threat intelligence database.

What vulnerabilities does ToddyCat exploit?

ToddyCat is known to exploit 3 CVEs. View the full list on the Strobes VI threat actor profile page.

ToddyCat

Also known as: Storm-0247, Websiic

CNInformation theft and espionage

Exploited CVEs

Overview

ToddyCat is responsible for multiple sets of attacks detected since December 2020 against high-profile entities in Europe and Asia. There is still little information about this actor, but its main distinctive signs are two formerly unknown tools that Kaspersky call ‘Samurai backdoor’ and ‘Ninja Trojan’.

Exploited Vulnerabilities

CVE ID	Action
CVE-2014-7169	View Details
CVE-2021-26855	View Details
CVE-2016-6662	View Details

Activity Timeline

First Seen

January 1, 2020

Quick Actions

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001