Keyboy

KeyBoy is an unaffiliated threat group that has led targeted campaigns against victims in Taiwan, the Philippines, and Hong Kong. This threat group has primarily targeted the government, healthcare, transportation, and high-tech industries, and has been active since 2011.

Other names for this threat

APT23, Operation Tropic Trooper, Pirate Panda, Tropic Trooper

The following is a collection of rules based on the presence of indicators of compromise publicly reported as associated with this malicious actor.