Mofang is a likely Chinese-based cyber espionage group, named for its frequent practice of imitating a victim's infrastructure. This group has been active since at least May 2012, and has conducted focused attacks against the government and critical infrastructure in Myanmar, and several other countries and industries, including military, automobile, and weapons.

Other names for this threat


This is a collection of rules based on the presence of indicators of compromise publicly reported as associated with this malicious actor.