Threat Actor Profile
High APT
Description

APT16is a China-based threat group that has launched spearphishing campaigns targeting Japanese and Taiwanese organizations.[1]

Confidence Score
100%
Tags
mitre-attack crawled web-source mitre-group
First Seen

May 31, 2017

Last Updated

April 29, 2026
18 hours, 45 minutes ago

Active Status
Active
Created

April 29, 2026

MITRE ATT&CK Techniques (1)
T1584 - Compromise Infrastructure
Resource Development
Indicators of Compromise

Loading IOCs…

IOC KQL for Sentinel
STIX Data 
{'aliases': [],
 'description': 'APT16is a China-based threat group that has launched '
                'spearphishing campaigns targeting Japanese and Taiwanese '
                'organizations.[1]',
 'external_references': [{'external_id': 'G0023',
                          'source_name': 'mitre-attack',
                          'url': 'https://attack.mitre.org/groups/G0023/'}],
 'id': 'threat-actor--G0023',
 'metadata': {'crawled_at': '2026-04-29T14:32:34.048483+00:00',
              'created_date': '31 May 2017',
              'last_modified': '16 April 2025',
              'mitre_group_id': 'G0023',
              'page_title': 'APT16, Group G0023 | MITRE ATT&CK®',
              'version': '1.1'},
 'name': 'APT16',
 'type': 'threat-actor'}
Quick Actions
Related TTPs (1)
Compromise Infrastructure
Resource Development
Back to Threat Actors
Dashboard Home