{
	"id": "73629346-a254-46eb-bbfa-3f04e5cc2858",
	"created_at": "2026-04-06T00:22:04.102425Z",
	"updated_at": "2026-04-10T13:12:04.612442Z",
	"deleted_at": null,
	"sha1_hash": "84b1ad63931e362f158a612cfe5541d88e25a3fd",
	"title": "Threat Group Cards: A Threat Actor Encyclopedia",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 48220,
	"plain_text": "Threat Group Cards: A Threat Actor Encyclopedia\nArchived: 2026-04-02 12:31:48 UTC\nHome \u003e List all groups \u003e List all tools \u003e List all groups using tool FindPOS\n Tool: FindPOS\nNames\nFindPOS\nPoSeidon\nCategory Malware\nType POS malware, Backdoor, Keylogger, Credential stealer\nDescription\n(Palo Alto) The malware in question has the ability to scrape memory for track data,\nexfiltrate any discovered data via HTTP POST requests, and in some instances log\nkeystrokes. While the malware family uses many common techniques witnessed in\nprevious malware families targeting POS devices, the prevalence and continued\ndevelopment of this malware demonstrates a threat to those running Windows-based point\nof sale terminals.\nInformation\nMalpedia AlienVault OTX Last change to this tool card: 25 May 2020\nDownload this tool card in JSON format\nAll groups using tool FindPOS\nChanged Name Country Observed\nUnknown groups\n _[ Interesting malware not linked to an actor yet ]_\n1 group listed (0 APT, 0 other, 1 unknown)\nhttps://apt.etda.or.th/cgi-bin/listgroups.cgi?u=dd153319-8f25-4ba9-995a-659a2676e81e\nPage 1 of 2\n\nSource: https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=dd153319-8f25-4ba9-995a-659a2676e81e\r\nhttps://apt.etda.or.th/cgi-bin/listgroups.cgi?u=dd153319-8f25-4ba9-995a-659a2676e81e\r\nPage 2 of 2\n\nUnknown groups _[ Interesting malware not linked to an actor yet ]_\n1 group listed (0 APT, 0 other, 1 unknown) \n   Page 1 of 2",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA"
	],
	"origins": [
		"web"
	],
	"references": [
		"https://apt.etda.or.th/cgi-bin/listgroups.cgi?u=dd153319-8f25-4ba9-995a-659a2676e81e"
	],
	"report_names": [
		"listgroups.cgi?u=dd153319-8f25-4ba9-995a-659a2676e81e"
	],
	"threat_actors": [],
	"ts_created_at": 1775434924,
	"ts_updated_at": 1775826724,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/84b1ad63931e362f158a612cfe5541d88e25a3fd.pdf",
		"text": "https://archive.orkl.eu/84b1ad63931e362f158a612cfe5541d88e25a3fd.txt",
		"img": "https://archive.orkl.eu/84b1ad63931e362f158a612cfe5541d88e25a3fd.jpg"
	}
}