Skip to content
CBCyber Breaches
Search

Incidents attributed to:

Cold River

In short, “Cold River” is a sophisticated threat (actor) that utilizes DNS subdomain hijacking, certificate spoofing, and covert tunneled command and control traffic in combination with complex and convincing lure docume

In short, “Cold River” is a sophisticated threat (actor) that utilizes DNS subdomain hijacking, certificate spoofing, and covert tunneled command and control traffic in combination with complex and convincing lure documents and custom implants.

Also known as

Nahr Elbard, Nahr el bared.

References

Actor metadata imported from Malpedia (Fraunhofer FKIE).