Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
StrongPity APT Changes Tactics to Stay Stealthy
#1
Quote:The APT group behind the sophisticated malware known as StrongPity (a.k.a. Promethium) has changed its tactics, after various research groups analyzed the malware and exposed its methods of deployment. The efforts have allowed the group to return to hidden status, even after being labeled a known quantity, according to researchers.

A fresh analysis reveals that the StrongPity group made only minor adjustments, requiring minimal effort and code changes – but that these have been enough to be effective in keeping their infrastructure out of the limelight. Now researchers say they have observed new domains and new IP addresses, plus filename changes and small encryption enhancements.

“Often, when researchers identify and unveil the work of threat groups, the malicious activity exposed disappears from view, and the researchers move on,” Cylance researchers explained in a report released Tuesday. “The trouble is, the more advanced threat actors often do not. And with more people looking ahead rather than behind, attackers are free to restructure old attacks and resume them.”

Source: https://threatpost.com/strongpity-apt-ch...hy/138503/
[-] The following 2 users say Thank You to silversurfer for this post:
  • Der.Reisende, harlan4096
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:





[-]
Recent Posts
Microsoft Edge fixes 0-day vulnerability...
Microsoft released...harlan4096 — 10:12
AnyDesk 8.0.9
AnyDesk 8.0.9:   ...harlan4096 — 10:10
AMD Confirms RDNA 3+ GPU Architecture F...
AMD Zen5-based Strix...harlan4096 — 10:08
Adobe Acrobat Reader DC 24.001.20629 (Op...
Adobe Acrobat Read...harlan4096 — 10:06
FastCopy 5.7.5
FastCopy 5.7.5: ...harlan4096 — 10:04

[-]
Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
No upcoming birthdays.

[-]
Online Staff
There are no staff members currently online.

>