Skip to content

G0116 Operation Wocao

Operation Wocao described activities carried out by a China-based cyber espionage adversary. Operation Wocao targeted entities within the government, managed service providers, energy, health care, and technology sectors across several countries, including China, France, Germany, the United Kingdom, and the United States. Operation Wocao used similar TTPs and tools to APT20, suggesting a possible overlap.1

Item Value
ID G0116
Associated Names
Version 1.0
Created 17 November 2020
Last Modified 12 October 2022
Navigation Layer View In ATT&CK® Navigator

References