{ "type": "bundle", "id": "bundle--89ed14ac-9026-478b-8eff-24e10eb4a45b", "spec_version": "2.0", "objects": [ { "modified": "2022-10-05T15:54:36.557Z", "name": "CostaRicto", "description": "[CostaRicto](https://attack.mitre.org/campaigns/C0004) was a suspected hacker-for-hire cyber espionage campaign that targeted multiple industries worldwide, with a large number being financial institutions. [CostaRicto](https://attack.mitre.org/campaigns/C0004) actors targeted organizations in Europe, the Americas, Asia, Australia, and Africa, with a large concentration in South Asia (especially India, Bangladesh, and Singapore), using custom malware, open source tools, and a complex network of proxies and SSH tunnels.(Citation: BlackBerry CostaRicto November 2020)", "aliases": [ "CostaRicto" ], "first_seen": "2019-10-01T04:00:00.000Z", "last_seen": "2020-11-01T04:00:00.000Z", "x_mitre_first_seen_citation": "(Citation: BlackBerry CostaRicto November 2020)", "x_mitre_last_seen_citation": "(Citation: BlackBerry CostaRicto November 2020)", "x_mitre_deprecated": false, "x_mitre_version": "1.0", "type": "campaign", "id": "campaign--f9cc545e-b0ef-4b92-8884-a3a4427609f6", "created": "2022-09-15T17:25:38.020Z", "created_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5", "revoked": false, "external_references": [ { "source_name": "mitre-attack", "url": "https://attack.mitre.org/campaigns/C0004", "external_id": "C0004" }, { "source_name": "BlackBerry CostaRicto November 2020", "description": "The BlackBerry Research and Intelligence Team. (2020, November 12). The CostaRicto Campaign: Cyber-Espionage Outsourced. Retrieved May 24, 2021.", "url": "https://blogs.blackberry.com/en/2020/11/the-costaricto-campaign-cyber-espionage-outsourced" } ], "object_marking_refs": [ "marking-definition--fa42a846-8d90-4e51-bc29-71d5b4802168" ], "x_mitre_attack_spec_version": "3.0.0", "x_mitre_modified_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5", "x_mitre_domains": [ "enterprise-attack" ] } ] }