Threat actors
APT3
aptCNvia MISP
1 CVE attributed
Aliases10
BORONBRONZE MAYFAIRBoyusecBrocade TyphoonBuckeyeGOTHIC PANDAGroup 6Red SylvanTG-0110UPS
Motivation2
EspionageState-sponsored
Symantec described UPS in 2016 report as: 'Buckeye (also known as APT3, Gothic Panda, UPS Team, and TG-0110) is a cyberespionage group that is believed to have been operating for well over half a decade. Traditionally, the group attacked organizations in the US as well as other targets. However, Buckeyes focus appears to have changed as of June 2015, when the group began compromising political entities in Hong Kong.'
Attributed CVEs1
| CVE | Description | Severity | EPSS | Flags | Modified |
|---|---|---|---|---|---|
| CVE-2015-3113 | Heap-based buffer overflow in Adobe Flash Player before 13.0.0.296 and 14.x through 18.x before 18.0.0.194 on Windows and OS X and before 11.2.202.468 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in June 2015. | CRITICAL9.8 | 100%p100 | KEVWeaponized | 2026-04-21 |