During the first three months of the year, Kaspersky Lab researchers discovered a wave of new APT activity based mainly in Asia – more than 30% of Q1 reports were dedicated to threat operations in this region. A peak of activity was also observed in the Middle East with a number of new techniques used by actors. These and other trends are covered in Kaspersky Lab’s latest quarterly threat intelligence summary.

 

In the first quarter of 2018, Kaspersky Lab researchers continued to detect cyber activities by advanced persistent threat (APT) groups speaking languages including Russian, Chinese, English and Korean, among others. And while some well-known actors didn’t show any noteworthy activity, a rising number of APT operations and new threat actors were detected in the Asian region. This rise is explained in part by the Olympic Destroyer malware attack on the Pyeongchang Olympic Games.

 

Highlights in Q1, 2018 include:

  • Continuous rise of Chinese-speaking activity, including the ShaggyPanther cluster of activity targeting government entities mainly in Taiwan and Malaysia, and CardinalLizard, which in 2018 increased its interest in Malaysia alongside an existing focus on the Philippines, Russia, and Mongolia.
  • Recorded APT activity in South Asia. Pakistan military entities have been under attack from the newly discovered Sidewinder group.
  • IronHusky APT apparently stops targeting Russian military actors and transfers all its efforts to Mongolia. At the end of January 2018, this Chinese-speaking actor launched an attack campaign on Mongolian government organizations before their meeting with the International Monetary Fund (IMF).
  • Korean peninsula remains in focus. The Kimsuky APT, targeting South Korean think tanks and political activities, has renewed its arsenal with a completely new framework designed for cyberespionage and used in a spear-phishing campaign. Furthermore, a subset of the infamous Lazarus group, Bluenoroff, has shifted to new targets including cryptocurrency companies and Point of Sales (PoS).

 

Kaspersky Lab also detected a peak of threat activity in the Middle East. For example, the StrongPity APT launched a number of new Man-in-the-Middle (MiTM) attacks on internet service provider (ISP) networks. Another highly skilled cybercriminal group, the Desert Falcons, returned to target Android devices with malware previously used in 2014.

 

Also, in Q1, Kaspersky Lab researchers discovered several groups routinely targeting routers and networking hardware in their campaigns, an approach adopted years ago by actors such as Regin and CloudAtlas. According to experts, routers will continue to be a target for attackers as a way of getting a foothold in a victim´s infrastructure.

 

During the first three months of the year we saw a number of new threat groups of different levels of sophistication, but which, overall, were using the most common and available malware tools. At the same time, we observed no significant activity from some well-known actors. This leads us to believe that they are rethinking their strategies and reorganizing their teams for future attacks.” said Vicente Diaz, Principal Security Researcher at Kaspersky Lab GReAT team.

 

The newly published Q1 APT Trends report summarizes the findings of Kaspersky Lab’s subscriber-only threat intelligence reports. During the first quarter of 2018, Kaspersky Lab’s Global Research and Analysis Team created 27 private reports for subscribers, with Indicators of Compromise (IOC) data and YARA rules to assist in forensics and malware-hunting.

 

For more information, please contact: intelreports@kaspersky.com


RECOMMENDED ARTICLE FOR TECHWORLD


 
NARUTO TO BORUTO: SHINOBI STRIKER UNVEILS ITS GAMEPLAY WITH MORE DETAILS ABOUT FIGHTERS AND BATTLE MODES
Techworld Date Posted: 23 August 2017 11:49 AM | 252 Views
BANDAI NAMCO Entertainment Asia is excited to reveal the amazing new content about the acrobatic ninja battle action game developed by Soleil Ltd. AVATAR SYSTEM For the first time in the Naruto series, the Avatar System.... See More
 
NARUTO TO BORUTO: SHINOBI STRIKER UNVEILS ITS GAMEPLAY WITH MORE DETAILS ABOUT FIGHTERS AND BATTLE MODES
Techworld Date Posted: 11:49 AM | 252 Views
BANDAI NAMCO Entertainment Asia is excited to reveal the amazing new content about the acrobatic ninja battle action game developed by Soleil Ltd. AVATAR SYSTEM For the first time in the Naruto series, the Avatar System...See More

 
OpenSignal Cites Smart for Having the Country’s Fastest LTE Network
Techworld Date Posted: 17 April 2018 1:46 PM | 671 Views
Mobile analytics firm OpenSignal has recognized PLDT wireless unit Smart Communications, Inc. for having the country’s fastest LTE network, bestowing the company four citations including best in 4G LTE download speed; best in overall.... See More
 
OpenSignal Cites Smart for Having the Country’s Fastest LTE Network
Techworld Date Posted: 1:46 PM | 671 Views
Mobile analytics firm OpenSignal has recognized PLDT wireless unit Smart Communications, Inc. for having the country’s fastest LTE network, bestowing the company four citations including best in 4G LTE download speed; best in overall...See More

 
BenQ’s ZOWIE XL2411P Is the Chosen Monitor of PGI
Techworld Date Posted: 25 July 2018 4:12 PM | 210 Views
The XL2411P has been chosen as the tournament monitor of PGI. ZOWIE strives to provide e-Sports professionals and enthusiasts with the best equipment to suit their personal preference, allowing them to focus on nothing.... See More
 
BenQ’s ZOWIE XL2411P Is the Chosen Monitor of PGI
Techworld Date Posted: 4:12 PM | 210 Views
The XL2411P has been chosen as the tournament monitor of PGI. ZOWIE strives to provide e-Sports professionals and enthusiasts with the best equipment to suit their personal preference, allowing them to focus on nothing...See More

 
The New Smart Watch from PLDT HOME is a Must-have for Kids and Here’s Why
Techworld Date Posted: 18 July 2016 2:19 PM | 431 Views
Are you looking for a useful yet super cool gift for your kid? How about a watch? No, how about a Smart Watch? The Smart Watch from PLDT HOME is the latest, and coolest, gadget for kids,.... See More
 
The New Smart Watch from PLDT HOME is a Must-have for Kids and Here’s Why
Techworld Date Posted: 2:19 PM | 431 Views
Are you looking for a useful yet super cool gift for your kid? How about a watch? No, how about a Smart Watch? The Smart Watch from PLDT HOME is the latest, and coolest, gadget for kids,...See More

 
UBTECH Robotics Introduces STEM-Friendly Jimu Robots for Kids and Teens in the Philippines
Techworld Date Posted: 28 September 2017 4:26 PM | 283 Views
UBTECH Robotics, the company best known globally as the industry leader in artificial intelligence and humanoid robotics today introduced a new line of STEM-friendly Jimu Robots for kids and teens in the Philippines. UBTECH's Jimu.... See More
 
UBTECH Robotics Introduces STEM-Friendly Jimu Robots for Kids and Teens in the Philippines
Techworld Date Posted: 4:26 PM | 283 Views
UBTECH Robotics, the company best known globally as the industry leader in artificial intelligence and humanoid robotics today introduced a new line of STEM-friendly Jimu Robots for kids and teens in the Philippines. UBTECH's Jimu...See More

 
KKR-Backed Emerald Media Leads US$65 Million Series B in aCommerce to Drive Southeast Asia’s Retail and Ecommerce Ecosystem Forward
Techworld Date Posted: 20 November 2017 1:46 PM | 179 Views
Manila, 20 November 2017 - aCommerce Co. Ltd. announced today that it has closed a US$65 million Series B funding round. The company is Southeast Asia’s leading ecommerce enabler and e-distributor in four markets.... See More
 
KKR-Backed Emerald Media Leads US$65 Million Series B in aCommerce to Drive Southeast Asia’s Retail and Ecommerce Ecosystem Forward
Techworld Date Posted: 1:46 PM | 179 Views
Manila, 20 November 2017 - aCommerce Co. Ltd. announced today that it has closed a US$65 million Series B funding round. The company is Southeast Asia’s leading ecommerce enabler and e-distributor in four markets...See More

 
Concern for Online Security of Our Older Relatives not Converting into Care, Warns Kaspersky Lab
Techworld Date Posted: 15 May 2018 4:52 PM | 324 Views
It’s well documented that younger generations are spending a greater proportion of their lives online, but they’re not the only ones.. See More
 
Concern for Online Security of Our Older Relatives not Converting into Care, Warns Kaspersky Lab
Techworld Date Posted: 4:52 PM | 324 Views
It’s well documented that younger generations are spending a greater proportion of their lives online, but they’re not the only ones.See More

 
SAP Supports Customers in Southeast Asia on Their Intelligent Enterprise Journey
Techworld Date Posted: 12 November 2018 5:01 PM | 45 Views
SAP SE (NYSE: SAP) showcased customers in Southeast Asia who have embarked on a journey towards becoming an Intelligent Enterprise. The economic stimulus in Southeast Asia continues to grow, resulting in the expansion of.... See More
 
SAP Supports Customers in Southeast Asia on Their Intelligent Enterprise Journey
Techworld Date Posted: 5:01 PM | 45 Views
SAP SE (NYSE: SAP) showcased customers in Southeast Asia who have embarked on a journey towards becoming an Intelligent Enterprise. The economic stimulus in Southeast Asia continues to grow, resulting in the expansion of...See More

 
ADATA and XPG to Showcase Latest Innovations at Computex Taipei 2018
Techworld Date Posted: 25 May 2018 3:27 PM | 245 Views
ADATA Technology, a leading manufacturer of high-performance DRAM modules and NAND flash products, today announced that it will be showcasing its latest products at Computex 2018 Taipei (Taipei Nangang Exhibition Center, 1F, booth I0608),.... See More
 
ADATA and XPG to Showcase Latest Innovations at Computex Taipei 2018
Techworld Date Posted: 3:27 PM | 245 Views
ADATA Technology, a leading manufacturer of high-performance DRAM modules and NAND flash products, today announced that it will be showcasing its latest products at Computex 2018 Taipei (Taipei Nangang Exhibition Center, 1F, booth I0608),...See More

 
Globe Telecom Signs Multi-Year Intelligent Operations Deal with Amdocs for Continuous Enhancement of Services and Operations
Techworld Date Posted: 1 March 2018 2:38 PM | 361 Views
Amdocs, (NASDAQ: DOX), a leading provider of software and services to communications and media companies, today announced that it has signed a multi-year services contract with Globe Telecom, one of the Philippines’ largest telecommunications.... See More
 
Globe Telecom Signs Multi-Year Intelligent Operations Deal with Amdocs for Continuous Enhancement of Services and Operations
Techworld Date Posted: 2:38 PM | 361 Views
Amdocs, (NASDAQ: DOX), a leading provider of software and services to communications and media companies, today announced that it has signed a multi-year services contract with Globe Telecom, one of the Philippines’ largest telecommunications...See More


Power by

Download Free AZ | Free Wordpress Themes