Kaspersky Lab’s Senior Security Researcher Noushin Shabab looks back at major cyberespionage cases that hit the Asia Pacific region to reveal the mistakes committed by cybercriminals that help researchers unmask their identity.

 

Errors and small clues left behind by attackers are vital in attribution, providing valuable intelligence on the people behind a cyberespionage attack and the possible connections between them. Kaspersky Lab’s researchers have been tracking advanced cyberespionage operations originating in and targeting Asia Pacific countries for the last 10 years, and have undertaken a review of the contribution made by attackers’ careless mistakes.

 

For example a threat actor called Dropping Elephant likely operating from India,reported by Kaspersky Lab in July 2016, targeted high profile diplomatic and economic entities in countries including Australia, China, Bangladesh, Taiwan and more. Clues revealed traces of three individuals where one in particular carelessly disclosed a personal document that led Kaspersky Lab researchers to find the faces behind Dropping Elephant.

 

Kaspersky Lab also published a report on Naikon APT in 2015. This cyberespionage campaign has been tracking geo-political intelligence in countries around the South China Sea for over half a decade, Later that year, an alleged connection discovered by ThreatConnect researchers showed a domain name used in Naikon APT, was also found across several social media accounts. These social media accounts carried more than 700 posts and 500 photos which enabled researchers to track down an official’s real location and work address.

 

What careless mistakes and clues reveal about the individuals involved in cyber espionage?

  • Apparent military connections

  • Organisations engaged in undercover threat activity for State Security

  • Private companies offering intelligent services

  • Cyberespionage campaigns that consist of a variety of people with different skilled roles and responsibilities

Senior Security Researcher, Noushin Shabab says, “Cybersecurity researchers examine cyberespionage campaigns by chasing trails of clues and careless mistakes. Once we have all the necessary pieces of the puzzle, we share evidences with fellow experts to be able to know the spies behind an attack, their main objectives and techniques, All the historic information gathered through investigating targeted attacks, helps us discover the truths and the myths of cyberespionage in the Asia Pacific region.”

 

General Manager ANZ, Anastasia Para Rae adds, “As cyberespionage and crime increases, it’s critical for organisations and experts to share cutting-edge knowledge’. We continue to witness the development of many attacks with no regard for the social or financial impact. The fact is, cyber spies will continue to take advantage of social engineering and open source data to develop sophisticated attacks. Investment in prompt and detailed information will better defend our businesses and ensure we can detect and respond to attacks. Kaspersky Lab’s Anti Targeted Attack Platform defends businesses from a multitude of threats every single time, no matter what form the attack takes.”

 

In order to protect your personal or business data from cyberattacks, Kaspersky Lab advises the following:

  • Implement an advanced, multi-layered security solution that covers all networks, systems and endpoints.

  • Educate and train your personnel on social engineering as this method is often used to make a victim open a malicious document or click on an infected link.

  • Conduct regular security assessments of the organisations IT infrastructure.

  • Use Kaspersky’s Threat Intelligence that tracks cyberattacks, incident or threats and provides customers with up-to-date relevant information that they are unaware of. Find out more at intelreports@kaspersky.com.


RECOMMENDED ARTICLE FOR TECHWORLD


 
Apacer AC532 USB 3.1 Gen 1 Portable Hard Drive: Anti-Vibration Internal Suspension Structure, 1-Meter Shockproof and Anti-Slip Design
Techworld Date Posted: 23 August 2017 11:30 AM | 320 Views
Apacer launches the brand-new AC532, a classic portable hard drive combining a slim shape with great protection design, making it a high price-performance choice in portable hard drives. AC532 is equipped with an anti.... See More
 
Apacer AC532 USB 3.1 Gen 1 Portable Hard Drive: Anti-Vibration Internal Suspension Structure, 1-Meter Shockproof and Anti-Slip Design
Techworld Date Posted: 11:30 AM | 320 Views
Apacer launches the brand-new AC532, a classic portable hard drive combining a slim shape with great protection design, making it a high price-performance choice in portable hard drives. AC532 is equipped with an anti...See More

 
Cyberespionage Group Uses Popular Messenger’s Brand for Targeted Attacks on Central Asian Diplomatic Entities
Techworld Date Posted: 23 October 2018 10:08 AM | 113 Views
Kaspersky Lab researchers have discovered a wave of cyber-espionage targeted attacks aimed at Central Asian diplomatic organizations. . See More
 
Cyberespionage Group Uses Popular Messenger’s Brand for Targeted Attacks on Central Asian Diplomatic Entities
Techworld Date Posted: 10:08 AM | 113 Views
Kaspersky Lab researchers have discovered a wave of cyber-espionage targeted attacks aimed at Central Asian diplomatic organizations. See More

 
Five Videos to Make the Most of Video Every Day Promo this Holiday Season
Techworld Date Posted: 10 December 2018 4:36 PM | 150 Views
This Christmas season, you can make the rush hour traffic or the long lines at the mall just a little bit more bearable with Smart’s Video Every Day, which lets you enjoy up to.... See More
 
Five Videos to Make the Most of Video Every Day Promo this Holiday Season
Techworld Date Posted: 4:36 PM | 150 Views
This Christmas season, you can make the rush hour traffic or the long lines at the mall just a little bit more bearable with Smart’s Video Every Day, which lets you enjoy up to...See More

 
Transcend Announces Its Participation in Davao International Marathon 2019 – Powered by Taiwan Excellence
Techworld Date Posted: 4 March 2019 3:53 PM | 45 Views
Transcend Information Inc., a leading manufacturer of storage and multimedia products, is proud to announce its participation in the Davao International Marathon 2019 (DIM 2019) – Powered by Taiwan Excellence. See More
 
Transcend Announces Its Participation in Davao International Marathon 2019 – Powered by Taiwan Excellence
Techworld Date Posted: 3:53 PM | 45 Views
Transcend Information Inc., a leading manufacturer of storage and multimedia products, is proud to announce its participation in the Davao International Marathon 2019 (DIM 2019) – Powered by Taiwan ExcellenceSee More

 
Nokia 8 Takes Its First Bite of Oreo™
Techworld Date Posted: 28 November 2017 10:24 AM | 269 Views
HMD Global, the home of Nokia phones, is excited to announce that Android™ 8.0 Oreo™ is now available for the Nokia 8. . See More
 
Nokia 8 Takes Its First Bite of Oreo™
Techworld Date Posted: 10:24 AM | 269 Views
HMD Global, the home of Nokia phones, is excited to announce that Android™ 8.0 Oreo™ is now available for the Nokia 8. See More

 
Nearly Half of Advanced Targeted Attacks in Q3, 2017 Came from Chinese-Speaking Actors
Techworld Date Posted: 23 November 2017 3:51 PM | 225 Views
The third quarter of 2017 clearly demonstrated that Chinese-speaking actors have not “disappeared” and are still very much active, conducting cyber-espionage campaigns against a wide range of countries and industry verticals. . See More
 
Nearly Half of Advanced Targeted Attacks in Q3, 2017 Came from Chinese-Speaking Actors
Techworld Date Posted: 3:51 PM | 225 Views
The third quarter of 2017 clearly demonstrated that Chinese-speaking actors have not “disappeared” and are still very much active, conducting cyber-espionage campaigns against a wide range of countries and industry verticals. See More

 
Go Deeper into the Void – CORSAIR Announces New Lineup of VOID PRO Gaming Headsets
Techworld Date Posted: 23 August 2017 11:33 AM | 295 Views
CORSAIR, a world leader in enthusiast memory, PC components and high-performance gaming hardware, today announced the release of its new range of VOID PRO gaming headsets. When you're deep in the game and sound.... See More
 
Go Deeper into the Void – CORSAIR Announces New Lineup of VOID PRO Gaming Headsets
Techworld Date Posted: 11:33 AM | 295 Views
CORSAIR, a world leader in enthusiast memory, PC components and high-performance gaming hardware, today announced the release of its new range of VOID PRO gaming headsets. When you're deep in the game and sound...See More

 
Lenovo Continues Support for Youth Organizations, Named Exclusive Technology Partner Anew of TAYO Awards Foundation
Techworld Date Posted: 15 February 2018 5:13 PM | 252 Views
Lenovo, one of the world’s biggest technology companies, is once again the official technology partner of the Ten Accomplished Youth Organizations (TAYO) Awards Foundation, Inc.. See More
 
Lenovo Continues Support for Youth Organizations, Named Exclusive Technology Partner Anew of TAYO Awards Foundation
Techworld Date Posted: 5:13 PM | 252 Views
Lenovo, one of the world’s biggest technology companies, is once again the official technology partner of the Ten Accomplished Youth Organizations (TAYO) Awards Foundation, Inc.See More

 
Half of Businesses Find It Hard to Identify a Serious Security Breach. Do You?
Techworld Date Posted: 8 November 2017 4:53 PM | 311 Views
Prevention is still the main pillar of corporate cybersecurity, says the report ‘New Threats, New Mindset: Being Risk Ready in a World of Complex Attacks’ from Kaspersky Lab.. See More
 
Half of Businesses Find It Hard to Identify a Serious Security Breach. Do You?
Techworld Date Posted: 4:53 PM | 311 Views
Prevention is still the main pillar of corporate cybersecurity, says the report ‘New Threats, New Mindset: Being Risk Ready in a World of Complex Attacks’ from Kaspersky Lab.See More

 
New Quadro-Powered Mobile Workstations Provide Ultimate Creative Freedom
Techworld Date Posted: 31 January 2017 3:30 AM | 475 Views
NVIDIA® recently announced that DELL™, HPI, Lenovo™, MSI®, and Fujitsu are all introducing advanced mobile workstations. See More
 
New Quadro-Powered Mobile Workstations Provide Ultimate Creative Freedom
Techworld Date Posted: 3:30 AM | 475 Views
NVIDIA® recently announced that DELL™, HPI, Lenovo™, MSI®, and Fujitsu are all introducing advanced mobile workstationsSee More


Power by

Download Free AZ | Free Wordpress Themes