Full Report
2025-05-13 • Trend Micro • Philip Chen, Pierre Lee, Vickie Su Open article on Malpedia
Analysis Summary
The provided context is minimal ("Earth Ammit Disrupts Drone Supply Chains Through Coordinated Multi-Wave Attacks in Taiwan =============== * * * * [...] * * * ####"). As an expert threat intelligence analyst, I must base the summary *only* on the information provided in the description, which primarily names the actor and the context of their activity.
Since the full article content detailing motivations, TTPs, and infrastructure is unavailable, I will populate the structured summary with the directly ascertainable information and indicate where details are inferred or missing.
# Threat Actor: Earth Ammit
## Attribution & Identity
* **Primary Identification:** Earth Ammit.
* **Known Aliases & Groups:** No other aliases or associated groups were explicitly mentioned in the provided description snippet.
## Activity Summary
The activity centers around **"Coordinated Multi-Wave Attacks"** specifically targeting and **disrupting drone supply chains** in Taiwan.
## Tactics, Techniques & Procedures
* [Specific TTPs are not detailed in the provided context snippet. We know the activity involves "Coordinated Multi-Wave Attacks."]
* [MITRE ATT&CK IDs are not mentioned.]
## Targeting
* **Sectors:** Drone Supply Chains.
* **Geography:** Taiwan.
* **Victims:** Entities involved in the drone supply chain within Taiwan.
## Tools & Infrastructure
* [Malware families used are not detailed in the provided context snippet.]
* [Infrastructure (C2, domains, IPs) is not detailed in the provided context snippet. All must be considered defanged.]
## Implications
Earth Ammit represents a threat capable of conducting coordinated, multi-stage disruption campaigns aimed at critical technology supply chains, specifically impacting advanced manufacturing or defense-related sectors (drones).
## Mitigations
* Focus defense strategies on supply chain integrity specific to drone manufacturing and logistics in Taiwan.
* Develop resilience plans against coordinated, multi-wave disruption attempts.