NEW: Group Profiler — instant APT intel lookup. Try it →

← threatfilter.dev / all groups / Windshift

Windshift

Also known as: Bahamut

Overview

Windshift is a threat group that has been active since at least 2017, targeting specific individuals for surveillance in government departments and critical infrastructure across the Middle East.

TTPs — 19 techniques across 6 tactics

Tools & malware (1)

WindTail

Reporting (3)