Tortoise Shell is an alternate name for the group known as CURIUM

---

Techniques, tactics and practices:

Tortoiseshell is a type of Advanced Persistent Threat that uses various techniques to remain undetected on an infected system. Some common tactics used by this APT include:

* Stealth mode: This allows the threat actor to operate in stealth mode, avoiding detection and remaining hidden for extended periods of time.
* Use of multiple layers of encryption: Tortoiseshell uses a combination of different types of encryption to protect its command-and-control (C&C) servers from being discovered by security researchers or law enforcement agencies. This includes the use of strong cryptographic algorithms, such as AES and RSA, which make it difficult for investigators to access the data stored on these servers.
* Use of multiple domains: Tortoiseshell uses a variety of domain names in its infrastructure, making it more resilient against takedowns or other disruptions. This also makes it