Dismiss this notice
Ashampoo Photo Optimizer 7 New Year 2019 Giveaway-https://www.geeks.fyi/showthread.php?tid=4948

Dismiss this notice
MakeUSLaugh_HitmanPro.Alert New Year 2019 Giveaway- https://www.geeks.fyi/showthread.php?tid=4946

Dismiss this notice
Ashampoo Burning Studio 20 New Year 2019 Giveaway- https://www.geeks.fyi/showthread.php?tid=4947

Dismiss this notice
PowerISO New Year 2019 Giveaway - https://www.geeks.fyi/showthread.php?tid=5170


Thread Rating:
  • 1 Vote(s) - 5 Average
  • 1
  • 2
  • 3
  • 4
  • 5
APT review of the year
#1
Information 
[Image: 181205-apt-review-of-the-year-1.png]
Quote:What were the most interesting developments in terms of APT activity throughout the year and what can we learn from them?

Not an easy question to answer; everybody has partial visibility and it’s never possible to really understand the motivations of some attacks or the developments behind them. Still, with the benefit of hindsight, let’s try to approach the problem from different angles to get a better understanding of what went on.

On big actors

There are a few ‘traditional’ actors that are very well known to the security community and that everybody has been tracking for the last few years. It has been business as usual for these actors in 2018 or, if anything, perhaps slightly quieter than usual.

In reality, it is the doctrines and modi operandi of these groups that determine how they react in the event of their operations becoming public knowledge. Some actors will simply abort their campaign and go into clean-up mode, while others carry on as normal. In order to do so, it is common for some of these actors to simultaneously work on several sets of activity. This allows them to compartmentalize operations, and if they are discovered, they simply improve their toolset to avoid detection next time.

We traditionally find many Russian-speaking actors in this second group, and we would like to highlight the 2018 activity of Sofacy, Turla and CozyBear.

Sofacy was probably the most active of the three. Throughout the year we detected it in various operations, updating their toolset and being blamed by authorities for several past operations. We have seen the actor deploying Gamefish and an updated version of its DealersChoice framework against embassies and EU agencies. One of the most high-profile incidents was abuse of Computrace LoJack by this actor in order to deploy its malware on victim machines, in what can be considered a UEFI-type rootkit.
Full reading: https://securelist.com/apt-review-of-the-year/89117/
[-] The following 2 users say Thank You to harlan4096 for this post:
  • Der.Reisende, silversurfer
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Latest Threads
Browsers and Extensions
Last Post: deathsmear
Yesterday 23:58
» Replies: 10
» Views: 279
Which software do you use to protect you...
Last Post: deathsmear
Yesterday 23:53
» Replies: 10
» Views: 301
GridinSoft Anti-Malware Valentine Giveaw...
Last Post: deathsmear
Yesterday 23:43
» Replies: 0
» Views: 24
Gridinsoft Anti-Malware 50% OFF
Last Post: deathsmear
Yesterday 23:40
» Replies: 0
» Views: 19
Marriott now lets you check if you’re a ...
Last Post: Toligo
Yesterday 23:01
» Replies: 0
» Views: 19
How AI and machine learning can help you...
Last Post: Toligo
Yesterday 22:58
» Replies: 0
» Views: 33
Five emerging cybersecurity threats you ...
Last Post: Toligo
Yesterday 22:51
» Replies: 0
» Views: 26
Twitter has been storing your ‘deleted’ ...
Last Post: Toligo
Yesterday 22:48
» Replies: 0
» Views: 16
Ransomware attackers exploit old plug-in...
Last Post: Toligo
Yesterday 22:45
» Replies: 0
» Views: 21
Using Machine Learning to Detect Malware...
Last Post: Toligo
Yesterday 22:44
» Replies: 0
» Views: 38
G DATA Security Blog_DeepRay foils cyber...
Last Post: jasonX
Yesterday 18:34
» Replies: 0
» Views: 28
G DATA Security Blog_Emotet: G DATA expl...
Last Post: jasonX
Yesterday 18:31
» Replies: 0
» Views: 26
G DATA Antivirus Software 2019
Last Post: jasonX
Yesterday 18:23
» Replies: 0
» Views: 9
The hacking strategies that will dominat...
Last Post: Toligo
Yesterday 17:37
» Replies: 0
» Views: 26
PC Game Giveaway: EMMA The Story
Last Post: sinanogz
Yesterday 15:26
» Replies: 0
» Views: 28
Microsoft Edge, Google Chrome Will Be Ab...
Last Post: silversurfer
Yesterday 10:15
» Replies: 0
» Views: 35
Google working on new Chrome security fe...
Last Post: silversurfer
Yesterday 10:10
» Replies: 0
» Views: 36
[Official] MakeUSLaugh_HitmanPro.Alert N...
Last Post: jasonX
Yesterday 07:17
» Replies: 14
» Views: 1059
Sandboxie updates
Last Post: silversurfer
15 February 19 22:32
» Replies: 3
» Views: 399
Mozilla to harden Firefox defenses with ...
Last Post: Toligo
15 February 19 22:21
» Replies: 2
» Views: 32

[-]
Staffs Online
There are no staff members currently online.