Lilac Typhoon is a threat actor attributed to China. They have been identified as exploiting the Atlassian Confluence RCE vulnerability CVE-2022-26134...

Threat Actor Profile

Lilac Typhoon

State-sponsored threat group originating from CN.

Real-Time Alerts

Actor Overview

Origin Country
CN

Related Threat Reports

Premium
APT Campaign Analysis - Q4 2025Dec 2025
New Tactics Observed in WildDec 2025
Infrastructure Mapping ReportDec 2025
Stay Updated

Get alerts when new intel on Lilac Typhoon is published.

Actor Details

Primary Name
Lilac Typhoon
Known Aliases
DEV-0234
Data Source
Precursor Intelligence
Need API Access?

Integrate threat actor data into your SIEM or SOAR.

View Plans →