{
	"id": "2ef33e40-ddab-497c-b662-027520424a8d",
	"created_at": "2026-04-06T00:19:57.084246Z",
	"updated_at": "2026-04-10T03:32:21.138797Z",
	"deleted_at": null,
	"sha1_hash": "dfa27ae218588bb9e5de84b96741416f6abbfe39",
	"title": "Secure Communications Blog",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 86827,
	"plain_text": "Secure Communications Blog\r\nBy BlackBerry\r\nArchived: 2026-04-05 12:35:30 UTC\r\nRecommended Reading\r\nBlackBerry Secure Communications Blog\r\nFeb 19, 2026·Articles\r\nThe Mission-Critical Standard: Why Mission-Certified Communications are the Future of High-Stakes Operations\r\nMission-certified communications deliver secure, unified support in high-stakes operations.\r\nFeb 11, 2026·Articles\r\nBlackBerry UEM in Action: How BlackBerry UEM Enables Trusted Mobile Operations Across\r\nthe German Federal Government\r\nBlackBerry UEM delivers trusted, compliant device management in Germany.\r\nJan 08, 2026·Articles\r\nSecure Communications in 2026: Predictions About How Trust Will Be Owned, Proven, and\r\nDefended\r\nWhy 2026 marks a break in secure communications: quantum readiness, metadata risk, verified identity, and\r\ndefense‑grade control redefine trust.\r\nFILTER ALL THE LATEST INSIGHTS\r\nShowing 9 results of 210\r\nShowing 9 results of 210\r\nMar 23, 2026Articles\r\nhttps://blogs.blackberry.com/en/2024/11/lightspy-apt41-deploys-advanced-deepdata-framework-in-targeted-southern-asia-espionage-campaign\r\nPage 1 of 3\n\nIntroducing the BlackBerry AtHoc Command Center: A Unified Workspace for Coordinated\r\nOperations\r\nStreamlining real-time awareness and coordinated response.\r\nMar 17, 2026Articles\r\nThe New BlackBerry Work: Making Devices Smarter with Enterprise AI\r\nBlackBerry Work Smart Tools offer productivity without compromise.\r\nMar 11, 2026Articles\r\nEncryption Alone Is Not a Security Strategy\r\nConsumer apps lack identity and device controls, risking sensitive data.\r\nMar 10, 2026Articles\r\nThe Latest Security Vulnerability Exploit Doesn't Break Your Encryption. It Bypasses It.\r\nA zero-day vulnerability exploit shows device compromises can bypass encryption entirely.\r\nFeb 19, 2026Articles\r\nThe Mission-Critical Standard: Why Mission-Certified Communications are the Future of High-Stakes Operations\r\nMission-certified communications deliver secure, unified support in high-stakes operations.\r\nFeb 11, 2026Articles\r\nBlackBerry UEM in Action: How BlackBerry UEM Enables Trusted Mobile Operations Across\r\nthe German Federal Government\r\nBlackBerry UEM delivers trusted, compliant device management in Germany.\r\nhttps://blogs.blackberry.com/en/2024/11/lightspy-apt41-deploys-advanced-deepdata-framework-in-targeted-southern-asia-espionage-campaign\r\nPage 2 of 3\n\nJan 13, 2026Articles\r\nVoices Under Siege: The New Frontline of Secure Communications\r\nCyber threats have moved to mobile communications, where identity, metadata exposure, and AI impersonation\r\nundermine trust.\r\nJan 8, 2026Articles\r\nSecure Communications in 2026: Predictions About How Trust Will Be Owned, Proven, and\r\nDefended\r\nWhy 2026 marks a break in secure communications: quantum readiness, metadata risk, verified identity, and\r\ndefense‑grade control redefine trust.\r\nDec 23, 2025Articles\r\nWhen Systems Fail: Resilience, Sovereignty, and Secure Communications\r\nA global cloud outage revealed the limits of centralized redundancy, underscoring that true operational resilience\r\nrequires sovereign communications.\r\nLoad more\r\nSource: https://blogs.blackberry.com/en/2024/11/lightspy-apt41-deploys-advanced-deepdata-framework-in-targeted-southern-asia-espionage-c\r\nampaign\r\nhttps://blogs.blackberry.com/en/2024/11/lightspy-apt41-deploys-advanced-deepdata-framework-in-targeted-southern-asia-espionage-campaign\r\nPage 3 of 3",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA",
		"Malpedia"
	],
	"references": [
		"https://blogs.blackberry.com/en/2024/11/lightspy-apt41-deploys-advanced-deepdata-framework-in-targeted-southern-asia-espionage-campaign"
	],
	"report_names": [
		"lightspy-apt41-deploys-advanced-deepdata-framework-in-targeted-southern-asia-espionage-campaign"
	],
	"threat_actors": [
		{
			"id": "4d5f939b-aea9-4a0e-8bff-003079a261ea",
			"created_at": "2023-01-06T13:46:39.04841Z",
			"updated_at": "2026-04-10T02:00:03.196806Z",
			"deleted_at": null,
			"main_name": "APT41",
			"aliases": [
				"WICKED PANDA",
				"BRONZE EXPORT",
				"Brass Typhoon",
				"TG-2633",
				"Leopard Typhoon",
				"G0096",
				"Grayfly",
				"BARIUM",
				"BRONZE ATLAS",
				"Red Kelpie",
				"G0044",
				"Earth Baku",
				"TA415",
				"WICKED SPIDER",
				"HOODOO",
				"Winnti",
				"Double Dragon"
			],
			"source_name": "MISPGALAXY:APT41",
			"tools": [],
			"source_id": "MISPGALAXY",
			"reports": null
		},
		{
			"id": "e698860d-57e8-4780-b7c3-41e5a8314ec0",
			"created_at": "2022-10-25T15:50:23.287929Z",
			"updated_at": "2026-04-10T02:00:05.329769Z",
			"deleted_at": null,
			"main_name": "APT41",
			"aliases": [
				"APT41",
				"Wicked Panda",
				"Brass Typhoon",
				"BARIUM"
			],
			"source_name": "MITRE:APT41",
			"tools": [
				"ASPXSpy",
				"BITSAdmin",
				"PlugX",
				"Impacket",
				"gh0st RAT",
				"netstat",
				"PowerSploit",
				"ZxShell",
				"KEYPLUG",
				"LightSpy",
				"ipconfig",
				"sqlmap",
				"China Chopper",
				"ShadowPad",
				"MESSAGETAP",
				"Mimikatz",
				"certutil",
				"njRAT",
				"Cobalt Strike",
				"pwdump",
				"BLACKCOFFEE",
				"MOPSLED",
				"ROCKBOOT",
				"dsquery",
				"Winnti for Linux",
				"DUSTTRAP",
				"Derusbi",
				"ftp"
			],
			"source_id": "MITRE",
			"reports": null
		},
		{
			"id": "2a24d664-6a72-4b4c-9f54-1553b64c453c",
			"created_at": "2025-08-07T02:03:24.553048Z",
			"updated_at": "2026-04-10T02:00:03.787296Z",
			"deleted_at": null,
			"main_name": "BRONZE ATLAS",
			"aliases": [
				"APT41 ",
				"BARIUM ",
				"Blackfly ",
				"Brass Typhoon",
				"CTG-2633",
				"Earth Baku ",
				"GREF",
				"Group 72 ",
				"Red Kelpie ",
				"TA415 ",
				"TG-2633 ",
				"Wicked Panda ",
				"Winnti"
			],
			"source_name": "Secureworks:BRONZE ATLAS",
			"tools": [
				"Acehash",
				"CCleaner v5.33 backdoor",
				"ChinaChopper",
				"Cobalt Strike",
				"DUSTPAN",
				"Dicey MSDN",
				"Dodgebox",
				"ForkPlayground",
				"HUC Proxy Malware (Htran)"
			],
			"source_id": "Secureworks",
			"reports": null
		}
	],
	"ts_created_at": 1775434797,
	"ts_updated_at": 1775791941,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/dfa27ae218588bb9e5de84b96741416f6abbfe39.pdf",
		"text": "https://archive.orkl.eu/dfa27ae218588bb9e5de84b96741416f6abbfe39.txt",
		"img": "https://archive.orkl.eu/dfa27ae218588bb9e5de84b96741416f6abbfe39.jpg"
	}
}