Navigating the UNC2452 Intrusion Campaign

Mandiant has uncovered a widespread campaign that we are tracking as UNC2452. The actors behind this campaign gained access to numerous public and private organizations around the world.

In December 2020, Mandiant was the first company to discover and report a global intrusion campaign conducted by a group of actors referred to as UNC2452. This document compliments technical threat research publications and provides a strategic perspective for CIOs, CISOs and other security professionals to consider as they respond to this intrusion campaign.

Almost daily we learn new details about the attacker toolkit, their list of victims and the motivations behind their work. Organizations must be resourced and prepared to continuously adapt and adjust their security programs based on emerging information.

Get your copy of the ebook to learn more about the UNC2452 campaign, your organizations likely risk and how to respond.