{
    "type": "bundle",
    "id": "bundle--6b87b224-efa6-45cf-b78c-66f01fee7591",
    "objects": [
        {
            "type": "identity",
            "spec_version": "2.1",
            "id": "identity--39436ad8-129c-4724-a464-090a730fadfb",
            "created": "2024-03-05T10:43:55.471984Z",
            "modified": "2024-03-05T10:43:55.472004Z",
            "name": "Kroll",
            "identity_class": "organization"
        },
        {
            "type": "threat-actor",
            "spec_version": "2.1",
            "id": "threat-actor--fca7abdd-5991-5846-8329-e388f37a7878",
            "created": "2026-06-24T19:51:58.776169Z",
            "modified": "2026-06-24T19:51:58.776169Z",
            "name": "KTA082"
        },
        {
            "type": "report",
            "spec_version": "2.1",
            "id": "report--21ed5b19-9339-4d27-9353-5445e55d9d54",
            "created_by_ref": "identity--39436ad8-129c-4724-a464-090a730fadfb",
            "created": "2026-06-24T19:51:58.784111Z",
            "modified": "2026-06-24T19:51:58.784111Z",
            "name": "TODDLERSHARK: ScreenConnect Vulnerability Exploited to Deploy BABYSHARK Variant",
            "published": "2024-03-05T00:00:00Z",
            "object_refs": [
                "identity--39436ad8-129c-4724-a464-090a730fadfb",
                "threat-actor--fca7abdd-5991-5846-8329-e388f37a7878"
            ],
            "external_references": [
                {
                    "source_name": "source",
                    "url": "https://www.kroll.com/en/insights/publications/cyber/screenconnect-vulnerability-exploited-to-deploy-babyshark"
                }
            ]
        }
    ]
}