During the first three months of the year, Kaspersky Lab researchers discovered a wave of new APT activity based mainly in Asia – more than 30% of Q1 reports were dedicated to threat operations in this region. A peak of activity was also observed in the Middle East with a number of new techniques used by actors. These and other trends are covered in Kaspersky Lab’s latest quarterly threat intelligence summary.

 

In the first quarter of 2018, Kaspersky Lab researchers continued to detect cyber activities by advanced persistent threat (APT) groups speaking languages including Russian, Chinese, English and Korean, among others. And while some well-known actors didn’t show any noteworthy activity, a rising number of APT operations and new threat actors were detected in the Asian region. This rise is explained in part by the Olympic Destroyer malware attack on the Pyeongchang Olympic Games.

 

Highlights in Q1, 2018 include:

  • Continuous rise of Chinese-speaking activity, including the ShaggyPanther cluster of activity targeting government entities mainly in Taiwan and Malaysia, and CardinalLizard, which in 2018 increased its interest in Malaysia alongside an existing focus on the Philippines, Russia, and Mongolia.
  • Recorded APT activity in South Asia. Pakistan military entities have been under attack from the newly discovered Sidewinder group.
  • IronHusky APT apparently stops targeting Russian military actors and transfers all its efforts to Mongolia. At the end of January 2018, this Chinese-speaking actor launched an attack campaign on Mongolian government organizations before their meeting with the International Monetary Fund (IMF).
  • Korean peninsula remains in focus. The Kimsuky APT, targeting South Korean think tanks and political activities, has renewed its arsenal with a completely new framework designed for cyberespionage and used in a spear-phishing campaign. Furthermore, a subset of the infamous Lazarus group, Bluenoroff, has shifted to new targets including cryptocurrency companies and Point of Sales (PoS).

 

Kaspersky Lab also detected a peak of threat activity in the Middle East. For example, the StrongPity APT launched a number of new Man-in-the-Middle (MiTM) attacks on internet service provider (ISP) networks. Another highly skilled cybercriminal group, the Desert Falcons, returned to target Android devices with malware previously used in 2014.

 

Also, in Q1, Kaspersky Lab researchers discovered several groups routinely targeting routers and networking hardware in their campaigns, an approach adopted years ago by actors such as Regin and CloudAtlas. According to experts, routers will continue to be a target for attackers as a way of getting a foothold in a victim´s infrastructure.

 

During the first three months of the year we saw a number of new threat groups of different levels of sophistication, but which, overall, were using the most common and available malware tools. At the same time, we observed no significant activity from some well-known actors. This leads us to believe that they are rethinking their strategies and reorganizing their teams for future attacks.” said Vicente Diaz, Principal Security Researcher at Kaspersky Lab GReAT team.

 

The newly published Q1 APT Trends report summarizes the findings of Kaspersky Lab’s subscriber-only threat intelligence reports. During the first quarter of 2018, Kaspersky Lab’s Global Research and Analysis Team created 27 private reports for subscribers, with Indicators of Compromise (IOC) data and YARA rules to assist in forensics and malware-hunting.

 

For more information, please contact: intelreports@kaspersky.com


RECOMMENDED ARTICLE FOR TECHWORLD


 
Meralco K-Ligtas Awards 2018 Recognizes New Batch of Electrical Safety Heroes
Techworld Date Posted: 28 November 2018 1:19 PM | 426 Views
Now on its third year, the Meralco K-Ligtas (Kuryenteng Ligtas) Awards once more celebrated the unsung heroes of electrical safety with the recent awarding of a new batch of K-Ligtas honorees.. See More
 
Meralco K-Ligtas Awards 2018 Recognizes New Batch of Electrical Safety Heroes
Techworld Date Posted: 1:19 PM | 426 Views
Now on its third year, the Meralco K-Ligtas (Kuryenteng Ligtas) Awards once more celebrated the unsung heroes of electrical safety with the recent awarding of a new batch of K-Ligtas honorees.See More

 
Top F&B Distribution Company Multi-M Food Corporation Initiates Digital Transformation on the Cloud
Techworld Date Posted: 18 February 2019 11:05 AM | 201 Views
One of the top distribution companies of food service chains in the country, Multi-M Food Corporation (MMFC) announced that they are kicking off their digital transformation journey to transform their operations to continue their.... See More
 
Top F&B Distribution Company Multi-M Food Corporation Initiates Digital Transformation on the Cloud
Techworld Date Posted: 11:05 AM | 201 Views
One of the top distribution companies of food service chains in the country, Multi-M Food Corporation (MMFC) announced that they are kicking off their digital transformation journey to transform their operations to continue their...See More

 
Kaspersky Lab Warns of Dangers of ‘Balkanisation’ at Its 4th APAC Cyber Security Summit
Techworld Date Posted: 26 September 2018 4:00 PM | 232 Views
Kaspersky Lab presented the cybersecurity risks that can result from Balkanisation in cyberspace — the fragmentation of the world wide web, during its 4th Asia Pacific (APAC) Cyber Security Weekend in Siem Reap, Cambodia.. See More
 
Kaspersky Lab Warns of Dangers of ‘Balkanisation’ at Its 4th APAC Cyber Security Summit
Techworld Date Posted: 4:00 PM | 232 Views
Kaspersky Lab presented the cybersecurity risks that can result from Balkanisation in cyberspace — the fragmentation of the world wide web, during its 4th Asia Pacific (APAC) Cyber Security Weekend in Siem Reap, Cambodia.See More

Frank Emmanuel Trazo
Hewlett Packard Enterprise: One of Silicon Valley’s Pioneers
Techworld • By: Frank Emmanuel Trazo | Date Posted: 22 June 2017 9:03 AM | 1440 Views
Last May 2017, Hewlett Packard Enterprise (HPE) decided to open an Asia-Pacific headquarters in Singapore. . See More
Frank Emmanuel Trazo
Hewlett Packard Enterprise: One of Silicon Valley’s Pioneers
Techworld • By: Frank Emmanuel Trazo | Date Posted: 9:03 AM | 1440 Views
Last May 2017, Hewlett Packard Enterprise (HPE) decided to open an Asia-Pacific headquarters in Singapore. See More

 
Dragons, Zombies and Superheroes: Top TV Show Disguises Used to Spread Malware
Techworld Date Posted: 5 April 2019 10:20 AM | 119 Views
Cybercriminals are actively using new episodes of popular TV shows to distribute malware, research by Kaspersky Lab has found. Game of Thrones, The Walking Dead, and Arrow are the shows receiving the most attention.... See More
 
Dragons, Zombies and Superheroes: Top TV Show Disguises Used to Spread Malware
Techworld Date Posted: 10:20 AM | 119 Views
Cybercriminals are actively using new episodes of popular TV shows to distribute malware, research by Kaspersky Lab has found. Game of Thrones, The Walking Dead, and Arrow are the shows receiving the most attention...See More

 
Synology® Unveils Surveillance Station 8.2 to Liberate Phone-Based Surveillance
Techworld Date Posted: 26 October 2018 4:28 PM | 139 Views
Synology Inc. recently announced Surveillance Station 8.2. Locally available in the Philippines, this release showcases LiveCam, a brand new security camera app that instantly turns a spare phone into an IP camera.. See More
 
Synology® Unveils Surveillance Station 8.2 to Liberate Phone-Based Surveillance
Techworld Date Posted: 4:28 PM | 139 Views
Synology Inc. recently announced Surveillance Station 8.2. Locally available in the Philippines, this release showcases LiveCam, a brand new security camera app that instantly turns a spare phone into an IP camera.See More

 
Introducing New Nokia Smartphones: Delivering Pioneering Experiences across the Range and True Innovation in Imaging
Techworld Date Posted: 27 February 2019 4:12 PM | 171 Views
HMD Global, the home of Nokia phones, today announced four new Android smartphones, including the world’s first smartphone with a unique five camera array, the Nokia 9 PureView. With a dedication to delivering quality.... See More
 
Introducing New Nokia Smartphones: Delivering Pioneering Experiences across the Range and True Innovation in Imaging
Techworld Date Posted: 4:12 PM | 171 Views
HMD Global, the home of Nokia phones, today announced four new Android smartphones, including the world’s first smartphone with a unique five camera array, the Nokia 9 PureView. With a dedication to delivering quality...See More

 
Nokia 8 Flagship Android Smartphone Arrives in PH
Techworld Date Posted: 30 September 2017 11:39 AM | 313 Views
Ending weeks of anticipation, HMD Global unveils Nokia's new flagship smartphone, the Nokia 8, today at the Intramuros Ballroom, Manila House, Taguig.. See More
 
Nokia 8 Flagship Android Smartphone Arrives in PH
Techworld Date Posted: 11:39 AM | 313 Views
Ending weeks of anticipation, HMD Global unveils Nokia's new flagship smartphone, the Nokia 8, today at the Intramuros Ballroom, Manila House, Taguig.See More

 
Get a Nuance Look at AI in Healthcare in the AI Podcast and at GTC
Techworld Date Posted: 22 February 2019 5:13 PM | 151 Views
Nuance is a pioneer in voice recognition technology. You probably recognize its name from their work bringing AI to speech recognition and virtual assistant technology.. See More
 
Get a Nuance Look at AI in Healthcare in the AI Podcast and at GTC
Techworld Date Posted: 5:13 PM | 151 Views
Nuance is a pioneer in voice recognition technology. You probably recognize its name from their work bringing AI to speech recognition and virtual assistant technology.See More

 
OPPO F7 Breaks History with 37,697 Units Sold on its First Day Sale!
Techworld Date Posted: 23 April 2018 3:12 PM | 549 Views
Technology stores nationwide filled up on the first day sale of the much-anticipated OPPO F7. The selfie expert brand exceeded customer expectations by achieving a total of 37,687 units sold on the first day.... See More
 
OPPO F7 Breaks History with 37,697 Units Sold on its First Day Sale!
Techworld Date Posted: 3:12 PM | 549 Views
Technology stores nationwide filled up on the first day sale of the much-anticipated OPPO F7. The selfie expert brand exceeded customer expectations by achieving a total of 37,687 units sold on the first day...See More


Power by

Download Free AZ | Free Wordpress Themes