Helix Kitten is an alternate name for the group known as OilRig

---

Helix Kitten is an advanced persistent threat (APT) that has been active since at least 2013 and is believed to be associated with Chinese intelligence agencies. It is named after its use of a backdoor called \"kitten\" in order to gain access to targeted systems, which it then uses for espionage purposes. The group\'s activities have included stealing sensitive information from government entities, defense contractors, and other organizations. Helix Kitten has been linked to several high-profile cyber attacks over the years, including the breach of the US Office of Personnel Management in 2015 that exposed millions of records.

Techniques, tactics and practices:

Helix Kitten is a highly sophisticated threat actor that uses various techniques to compromise its targets. Some of these include spear-phishing emails, exploiting vulnerabilities in software and systems, using social engineering tactics such as impersonation or baiting, and conducting targeted attacks against specific individuals or organizations. The group is also known for their use of custom malware that can evade detection by antivirus programs, making it difficult to detect and prevent Helix Kitten\'s activities. Additionally, the APT has been observed using stealth techniques such as staying dormant on compromised systems or hiding its activity within legitimate network traffic in order to avoid being detected.