🇷🇺

Storm-2460

APT Group 18 zero-day CVEs

Also Known As

No alias recorded

Target Countries

No target country recorded

Sectors Targeted

No targeted sector recorded

Details

Origin 🇷🇺 RU

Last Updated 02 Jan 2026

MITRE ATT&CK 18

T1012 - Query Registry T1016 - System Network Configuration Discovery T1027 - Obfuscated Files or Information T1033 - System Owner/User Discovery T1055 - Process Injection T1057 - Process Discovery T1059 - Command and Scripting Interpreter T1068 - Exploitation for Privilege Escalation T1082 - System Information Discovery T1083 - File and Directory Discovery T1090 - Proxy T1095 - Non-Application Layer Protocol T1106 - Native API T1132 - Data Encoding T1505.003 - Web Shell T1543.003 - Windows Service T1571 - Non-Standard Port T1573 - Encrypted Channel

Related Zero-Days 18

CVE-2017-0144 CVE-2023-28252 CVE-2025-10585 CVE-2025-21043 CVE-2025-24983 CVE-2025-29824 CVE-2025-30397 CVE-2025-30400 CVE-2025-32701 CVE-2025-32706 CVE-2025-33053 CVE-2025-38352 CVE-2025-43300 CVE-2025-48543 CVE-2025-53770 CVE-2025-53771 CVE-2025-6558 CVE-2025-7775