Kaspersky Lab’s Senior Security Researcher Noushin Shabab looks back at major cyberespionage cases that hit the Asia Pacific region to reveal the mistakes committed by cybercriminals that help researchers unmask their identity.

 

Errors and small clues left behind by attackers are vital in attribution, providing valuable intelligence on the people behind a cyberespionage attack and the possible connections between them. Kaspersky Lab’s researchers have been tracking advanced cyberespionage operations originating in and targeting Asia Pacific countries for the last 10 years, and have undertaken a review of the contribution made by attackers’ careless mistakes.

 

For example a threat actor called Dropping Elephant likely operating from India,reported by Kaspersky Lab in July 2016, targeted high profile diplomatic and economic entities in countries including Australia, China, Bangladesh, Taiwan and more. Clues revealed traces of three individuals where one in particular carelessly disclosed a personal document that led Kaspersky Lab researchers to find the faces behind Dropping Elephant.

 

Kaspersky Lab also published a report on Naikon APT in 2015. This cyberespionage campaign has been tracking geo-political intelligence in countries around the South China Sea for over half a decade, Later that year, an alleged connection discovered by ThreatConnect researchers showed a domain name used in Naikon APT, was also found across several social media accounts. These social media accounts carried more than 700 posts and 500 photos which enabled researchers to track down an official’s real location and work address.

 

What careless mistakes and clues reveal about the individuals involved in cyber espionage?

  • Apparent military connections

  • Organisations engaged in undercover threat activity for State Security

  • Private companies offering intelligent services

  • Cyberespionage campaigns that consist of a variety of people with different skilled roles and responsibilities

Senior Security Researcher, Noushin Shabab says, “Cybersecurity researchers examine cyberespionage campaigns by chasing trails of clues and careless mistakes. Once we have all the necessary pieces of the puzzle, we share evidences with fellow experts to be able to know the spies behind an attack, their main objectives and techniques, All the historic information gathered through investigating targeted attacks, helps us discover the truths and the myths of cyberespionage in the Asia Pacific region.”

 

General Manager ANZ, Anastasia Para Rae adds, “As cyberespionage and crime increases, it’s critical for organisations and experts to share cutting-edge knowledge’. We continue to witness the development of many attacks with no regard for the social or financial impact. The fact is, cyber spies will continue to take advantage of social engineering and open source data to develop sophisticated attacks. Investment in prompt and detailed information will better defend our businesses and ensure we can detect and respond to attacks. Kaspersky Lab’s Anti Targeted Attack Platform defends businesses from a multitude of threats every single time, no matter what form the attack takes.”

 

In order to protect your personal or business data from cyberattacks, Kaspersky Lab advises the following:

  • Implement an advanced, multi-layered security solution that covers all networks, systems and endpoints.

  • Educate and train your personnel on social engineering as this method is often used to make a victim open a malicious document or click on an infected link.

  • Conduct regular security assessments of the organisations IT infrastructure.

  • Use Kaspersky’s Threat Intelligence that tracks cyberattacks, incident or threats and provides customers with up-to-date relevant information that they are unaware of. Find out more at intelreports@kaspersky.com.


RECOMMENDED ARTICLE FOR TECHWORLD


 
Botnet Activity in H1 2018: Multifunctional Bots Becoming More Widespread
Techworld Date Posted: 3 September 2018 5:14 PM | 136 Views
Kaspersky Lab researchers have published a report on botnet activity in the first half of 2018, analyzing more than 150 malware families and their modifications circulating through 600,000 botnets around the world. . See More
 
Botnet Activity in H1 2018: Multifunctional Bots Becoming More Widespread
Techworld Date Posted: 5:14 PM | 136 Views
Kaspersky Lab researchers have published a report on botnet activity in the first half of 2018, analyzing more than 150 malware families and their modifications circulating through 600,000 botnets around the world. See More

 
Kaspersky Lab Challenges Whitehats to Find Flaws of IoT Devices in Global Competition
Techworld Date Posted: 25 October 2018 1:49 PM | 47 Views
Kaspersky Lab is inviting ethical hackers, known as whitehats, from across the world to test the security of smart devices and industrial systems as it launches its fourth international industrial Capture the Flag (CTF).... See More
 
Kaspersky Lab Challenges Whitehats to Find Flaws of IoT Devices in Global Competition
Techworld Date Posted: 1:49 PM | 47 Views
Kaspersky Lab is inviting ethical hackers, known as whitehats, from across the world to test the security of smart devices and industrial systems as it launches its fourth international industrial Capture the Flag (CTF)...See More

 
Concern for Online Security of Our Older Relatives not Converting into Care, Warns Kaspersky Lab
Techworld Date Posted: 15 May 2018 4:52 PM | 326 Views
It’s well documented that younger generations are spending a greater proportion of their lives online, but they’re not the only ones.. See More
 
Concern for Online Security of Our Older Relatives not Converting into Care, Warns Kaspersky Lab
Techworld Date Posted: 4:52 PM | 326 Views
It’s well documented that younger generations are spending a greater proportion of their lives online, but they’re not the only ones.See More

 
KKR-Backed Emerald Media Leads US$65 Million Series B in aCommerce to Drive Southeast Asia’s Retail and Ecommerce Ecosystem Forward
Techworld Date Posted: 20 November 2017 1:46 PM | 180 Views
Manila, 20 November 2017 - aCommerce Co. Ltd. announced today that it has closed a US$65 million Series B funding round. The company is Southeast Asia’s leading ecommerce enabler and e-distributor in four markets.... See More
 
KKR-Backed Emerald Media Leads US$65 Million Series B in aCommerce to Drive Southeast Asia’s Retail and Ecommerce Ecosystem Forward
Techworld Date Posted: 1:46 PM | 180 Views
Manila, 20 November 2017 - aCommerce Co. Ltd. announced today that it has closed a US$65 million Series B funding round. The company is Southeast Asia’s leading ecommerce enabler and e-distributor in four markets...See More

 
IPC Shares Game Changing Nature of Productivity Apps to Kick Off #DiscoverDigital Seminar Series
Techworld Date Posted: 20 March 2018 9:34 AM | 401 Views
Local cloud services pioneer IPC (IP Converge Data Services, Inc.) opened its digital transformation seminar series this year with an insightful discourse on how productivity applications are changing the workplace for the better. Dubbed.... See More
 
IPC Shares Game Changing Nature of Productivity Apps to Kick Off #DiscoverDigital Seminar Series
Techworld Date Posted: 9:34 AM | 401 Views
Local cloud services pioneer IPC (IP Converge Data Services, Inc.) opened its digital transformation seminar series this year with an insightful discourse on how productivity applications are changing the workplace for the better. Dubbed...See More

 
Kaspersky Lab Announces Opening of New APAC Headquarters
Techworld Date Posted: 14 July 2017 2:17 PM | 169 Views
To support the expansion of its business in Asia Pacific, Kaspersky Lab today announces the opening of a new location in Singapore for its regional HQ. There are currently 37 Kaspersky Lab offices in 32.... See More
 
Kaspersky Lab Announces Opening of New APAC Headquarters
Techworld Date Posted: 2:17 PM | 169 Views
To support the expansion of its business in Asia Pacific, Kaspersky Lab today announces the opening of a new location in Singapore for its regional HQ. There are currently 37 Kaspersky Lab offices in 32...See More

 
DJI Introduces FlightHub Software to Help Enterprises Efficiently Manage Their Drone Operations
Techworld Date Posted: 8 November 2017 4:09 PM | 193 Views
DJI, the world’s leader in civilian drones and aerial imaging technology, unveiled FlightHub, a new software solution that helps enterprises and drone service providers efficiently manage their drone operations from a single platform.. See More
 
DJI Introduces FlightHub Software to Help Enterprises Efficiently Manage Their Drone Operations
Techworld Date Posted: 4:09 PM | 193 Views
DJI, the world’s leader in civilian drones and aerial imaging technology, unveiled FlightHub, a new software solution that helps enterprises and drone service providers efficiently manage their drone operations from a single platform.See More

 
Building Safety Must-Haves Available At WOSAS 2018
Techworld Date Posted: 13 November 2018 4:10 PM | 90 Views
Due to overwhelming public demand, WOSAS (World of Safety and Security) and WOCEE (World of Consumer Electronics Exposition) are back again this year. See More
 
Building Safety Must-Haves Available At WOSAS 2018
Techworld Date Posted: 4:10 PM | 90 Views
Due to overwhelming public demand, WOSAS (World of Safety and Security) and WOCEE (World of Consumer Electronics Exposition) are back again this yearSee More

 
Honeywell Awards Three Scholarships to Chemical Engineer Students in the Philippines
Techworld Date Posted: 7 November 2017 4:41 PM | 213 Views
Honeywell (NYSE: HON) announced today that it has awarded scholarships to three Filipino students majoring in chemical engineering at a leading university in Philippines, affirming Honeywell’s continued investment in building the future engineering talent.... See More
 
Honeywell Awards Three Scholarships to Chemical Engineer Students in the Philippines
Techworld Date Posted: 4:41 PM | 213 Views
Honeywell (NYSE: HON) announced today that it has awarded scholarships to three Filipino students majoring in chemical engineering at a leading university in Philippines, affirming Honeywell’s continued investment in building the future engineering talent...See More

 
Fortinet Survey Reveals 48% of APAC IT Decision Makers Are Confident of Their Cybersecurity Postures despite 86% of Organizations Being Breached
Techworld Date Posted: 15 December 2017 9:25 AM | 245 Views
Fortinet® (NASDAQ: FTNT), the global leader in broad, integrated and automated cybersecurity solutions, today revealed additional findings from its Global Enterprise Security Survey. According to the research, 40 percent of IT decision makers (ITDMs). See More
 
Fortinet Survey Reveals 48% of APAC IT Decision Makers Are Confident of Their Cybersecurity Postures despite 86% of Organizations Being Breached
Techworld Date Posted: 9:25 AM | 245 Views
Fortinet® (NASDAQ: FTNT), the global leader in broad, integrated and automated cybersecurity solutions, today revealed additional findings from its Global Enterprise Security Survey. According to the research, 40 percent of IT decision makers (ITDMs)See More


Power by

Download Free AZ | Free Wordpress Themes