Dismiss this notice
Panda Dome Complete MakeUSLaugh Mother's Day 2019 Giveaway - https://www.geeks.fyi/showthread.php?tid=6837

Dismiss this notice
Iobit Driver Booster 6 Professional Mother's Day 2019 Giveaway - https://www.geeks.fyi/showthread.php?tid=6777

Dismiss this notice
Advanced SystemCare 12 Professional Mother's Day 2019 Giveaway - https://www.geeks.fyi/showthread.php?tid=6776


Thread Rating:
  • 1 Vote(s) - 5 Average
  • 1
  • 2
  • 3
  • 4
  • 5
APT review of the year
#1
Information 
[Image: 181205-apt-review-of-the-year-1.png]
Quote:What were the most interesting developments in terms of APT activity throughout the year and what can we learn from them?

Not an easy question to answer; everybody has partial visibility and it’s never possible to really understand the motivations of some attacks or the developments behind them. Still, with the benefit of hindsight, let’s try to approach the problem from different angles to get a better understanding of what went on.

On big actors

There are a few ‘traditional’ actors that are very well known to the security community and that everybody has been tracking for the last few years. It has been business as usual for these actors in 2018 or, if anything, perhaps slightly quieter than usual.

In reality, it is the doctrines and modi operandi of these groups that determine how they react in the event of their operations becoming public knowledge. Some actors will simply abort their campaign and go into clean-up mode, while others carry on as normal. In order to do so, it is common for some of these actors to simultaneously work on several sets of activity. This allows them to compartmentalize operations, and if they are discovered, they simply improve their toolset to avoid detection next time.

We traditionally find many Russian-speaking actors in this second group, and we would like to highlight the 2018 activity of Sofacy, Turla and CozyBear.

Sofacy was probably the most active of the three. Throughout the year we detected it in various operations, updating their toolset and being blamed by authorities for several past operations. We have seen the actor deploying Gamefish and an updated version of its DealersChoice framework against embassies and EU agencies. One of the most high-profile incidents was abuse of Computrace LoJack by this actor in order to deploy its malware on victim machines, in what can be considered a UEFI-type rootkit.
Full reading: https://securelist.com/apt-review-of-the-year/89117/
[-] The following 2 users Like harlan4096's post:
  • Der.Reisende, silversurfer
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Latest Threads
MUST READ BEFORE POSTING!
Last Post: JM Safe
Today 18:36
» Replies: 1
» Views: 63
Samsung Ready to Give Up on 64GB Storage...
Last Post: JM Safe
Today 18:11
» Replies: 1
» Views: 52
GoodSync v.10
Last Post: wwd
Today 18:09
» Replies: 6
» Views: 186
VirtualBox 6.0.8 Released to Make Shared...
Last Post: JM Safe
Today 15:23
» Replies: 1
» Views: 54
Duckduckgo vs Google: A Security Compari...
Last Post: JM Safe
Today 11:40
» Replies: 1
» Views: 53
ASUS Zenfone 6 to launch soon in India, ...
Last Post: jayc137
Today 06:19
» Replies: 0
» Views: 36
GFYI Panda Dome Complete MakeUSLaugh Mot...
Last Post: divinenews
Yesterday 08:52
» Replies: 4
» Views: 253
GFYI [Official] Driver Booster 6 Profess...
Last Post: divinenews
Yesterday 08:16
» Replies: 3
» Views: 219
GFYI [Official] Advanced SystemCare 12 P...
Last Post: divinenews
Yesterday 07:48
» Replies: 3
» Views: 189
The Latest iPhone Sale Figures Are Anyth...
Last Post: silversurfer
17 May 19 12:13
» Replies: 0
» Views: 40
Brave Browser Updates
Last Post: silversurfer
17 May 19 11:22
» Replies: 20
» Views: 761
Vivaldi Browser Updates
Last Post: silversurfer
17 May 19 11:20
» Replies: 18
» Views: 555
Opera Browser Updates
Last Post: silversurfer
17 May 19 11:17
» Replies: 23
» Views: 777
Adobe Photoshop Elements 2019 - Introduc...
Last Post: Mohammad.Poorya
17 May 19 07:46
» Replies: 0
» Views: 42
Avast Blog Tips & Advices: Advice for Yo...
Last Post: harlan4096
17 May 19 06:58
» Replies: 0
» Views: 64
SanDisk's First 1 TB microSD Card Now Av...
Last Post: harlan4096
17 May 19 06:44
» Replies: 0
» Views: 35
Samsung Samples 32 Gb DDR4 Memory Chips
Last Post: harlan4096
17 May 19 06:43
» Replies: 0
» Views: 55
Going forward, Multi-process can't be tu...
Last Post: harlan4096
17 May 19 06:40
» Replies: 0
» Views: 43
Mozilla Firefox Preview, new Firefox bro...
Last Post: harlan4096
17 May 19 06:37
» Replies: 0
» Views: 47
Microsoft Fixes Installation Issues in W...
Last Post: harlan4096
17 May 19 06:29
» Replies: 1
» Views: 57

[-]
Staffs Online
There are no staff members currently online.