iHash

News and How to's

apt

APT ‘Hackers For Hire’ Target Financial, Entertainment Firms

by Leave a Comment

A hackers-for-hire operation has been discovered using a strain of previously undocumented malware to target South Asian financial institutions and global entertainment companies. Dubbed "CostaRicto" by Blackberry researchers, the campaign appears to be the handiwork of APT mercenaries who possess bespoke malware tooling and complex VPN proxy and SSH tunneling … [Read more...] about APT ‘Hackers For Hire’ Target Financial, Entertainment Firms

Chinese APT Group Targets Media, Finance, and Electronics Sectors

by Leave a Comment

Cybersecurity researchers on Tuesday uncovered a new espionage campaign targeting media, construction, engineering, electronics, and finance sectors in Japan, Taiwan, the U.S., and China. Linking the attacks to Palmerworm (aka BlackTech) — likely a China-based advanced persistent threat (APT) — Symantec's Threat Hunter Team said the first wave of activity associated with this … [Read more...] about Chinese APT Group Targets Media, Finance, and Electronics Sectors

APT Hackers Exploit Autodesk 3D Max Software for Industrial Espionage

by Leave a Comment

It's one thing for APT groups to conduct cyber espionage to meet their own financial objectives. But it's an entirely different matter when they are used as "hackers for hire" by competing private companies to make away with confidential information.Bitdefender's Cyber Threat Intelligence Lab discovered yet another instance of an espionage attack targeting an unnamed … [Read more...] about APT Hackers Exploit Autodesk 3D Max Software for Industrial Espionage

PROMETHIUM extends global reach with StrongPity3 APT

by Leave a Comment

Cisco Blogs / Security / Threat Research / PROMETHIUM extends global reach with StrongPity3 APT The PROMETHIUM threat actor — active since 2012 — has been exposed multiple times over the past several years.. However, this has not deterred this actor from continuing and expanding their activities. By matching indicators such as code similarity, command and control … [Read more...] about PROMETHIUM extends global reach with StrongPity3 APT

How to guard against the Holy Water APT

by Leave a Comment

At the end of 2019, our experts used the watering hole technique to uncover a targeted attack. Without deploying any sophisticated tricks or exploiting any vulnerabilities, the attackers infected user devices in Asia over a period of at least eight months. Based on the subject matter of the websites used to spread the malware, the attack was christened, yes, Holy Water. This is … [Read more...] about How to guard against the Holy Water APT

Puss in Boots as an example of an APT campaign

by Leave a Comment

Have you ever thought about what your answer would be if your precocious child asked, “What’s a politically motivated APT attack?” In fact, it’s straightforward. Just dust off your copy of Charles Perrault’s Puss in Boots and read it together with an eye on the cybersecurity aspects. After all, if we ignore the artistic liberties, such as a talking cat and ogres, the tale … [Read more...] about Puss in Boots as an example of an APT campaign

The Definitive RFP Templates for EDR/EPP and APT Protection

by Leave a Comment

Advanced Persistent Threats groups were once considered a problem that concerns Fortune 100 companies only. However, the threat landscape of the recent years tells otherwise—in fact, every organization, regardless of vertical and size is at risk, whether as a direct target, supply chain or collateral damage.The vast majority of security decision-makers acknowledge they need to … [Read more...] about The Definitive RFP Templates for EDR/EPP and APT Protection