Kaspersky Lab researchers have discovered a wave of cyber-espionage targeted attacks aimed at Central Asian diplomatic organizations. The Trojan called “Octopus”, disguised as a version of a popular and legitimate online messenger, was attracting users amid the news of a possible ban on Telegram messenger in the region. Once installed, Octopus provided attackers with remote access to victims’ computers.

 

Threat actors are constantly seeking exploitable modern trends and adjusting their methods in order to jeopardize users’ privacy and sensitive information across the world. In this case, the possible prohibition of the widely used Telegram messenger allowed threat actors to plan attacks using the Octopus Trojan, subsequently providing the hackers with remote access to a victim’s computer.

 

Threat actors distributed Octopus within an archive disguised as an alternative version of Telegram messenger for Kazakh opposition parties. The launcher was disguised with a recognizable symbol of one of the opposition political parties from the region, and the Trojan was hidden inside. Once activated, the Trojan gave the actors behind the malware opportunities to perform various operations with data on the infected computer, including, but not limited to, deletion, blocks, modifications, copying and downloading. Thus, the attackers were able to spy on victims, steal sensitive data and gain backdoor access to the systems. The scheme has some similarities with an infamous cyber-espionage operation called Zoo Park, in which the malware used for the APT was mimicking a Telegram application to spy on victims.

 

Using Kaspersky algorithms that recognize similarities in software code, security researchers discovered that Octopus could have links to DustSquad – a Russian-speaking cyber-espionage actor previously detected in former USSR countries in Central Asia, as well as Afghanistan, since 2014. Within the last two years, the researchers have detected four of their campaigns with custom Android and Windows malware aimed both at private users and diplomatic entities.

 

“We have seen a lot of threat actors targeting diplomatic entities in Central Asia in 2018. DustSquad has been working in the region for several years and could be the group behind this new threat. Apparently, the interest in this regions’ cyber affairs is growing steadily. We strongly advise users and organizations in the region to keep an eye on their systems and instruct employees to do the same,” says Denis Legezo, a security researcher at Kaspersky Lab.

 

To reduce the risk of sophisticated cyberattacks, Kaspersky Lab recommends implementing the following measures:

  • Educate staff on digital hygiene and explain how to recognize and avoid potentially malicious applications or files. For example, employees should not download and launch any apps or programs from untrusted or unknown sources.

 

  •  Use a robust endpoint security solution with Application Control functionality that limits an application’s ability to launch or access critical system resources.

 

 

  • Make sure that your security team has access to a professional threat intelligence.

 

Read the full report on the Securelist.com.


RECOMMENDED ARTICLE FOR TECHWORLD


 
ShadowPad: How Attackers Hide Backdoor in Software Used by Hundreds of Large Companies around the World
Techworld Date Posted: 17 August 2017 3:12 PM | 190 Views
Kaspersky Lab experts have discovered a backdoor planted in a server management software product used by hundreds of large businesses around the world. When activated, the backdoor allows attackers to download further malicious modules.... See More
 
ShadowPad: How Attackers Hide Backdoor in Software Used by Hundreds of Large Companies around the World
Techworld Date Posted: 3:12 PM | 190 Views
Kaspersky Lab experts have discovered a backdoor planted in a server management software product used by hundreds of large businesses around the world. When activated, the backdoor allows attackers to download further malicious modules...See More

PCBG  Writing Staff
Free Operators on Rainbow Six Siege Released
Techworld • By: PCBG  Writing Staff | Date Posted: 16 March 2018 11:43 AM | 505 Views
Gamers are clamoring for freebies. The microtransaction scheme of today’s games got the market on their toes, keeping everyone busy playing and trading. We have all sorts of genres, from FPS to RTS to.... See More
PCBG  Writing Staff
Free Operators on Rainbow Six Siege Released
Techworld • By: PCBG  Writing Staff | Date Posted: 11:43 AM | 505 Views
Gamers are clamoring for freebies. The microtransaction scheme of today’s games got the market on their toes, keeping everyone busy playing and trading. We have all sorts of genres, from FPS to RTS to...See More

 
MSI Gaming Is Coming in Cebu This December
Techworld Date Posted: 29 November 2017 4:53 PM | 252 Views
Micro-star International (MSI), the world’s best-selling gaming laptop brand, is taking a big step in announcing their new concept corner to be launch this December 2017. . See More
 
MSI Gaming Is Coming in Cebu This December
Techworld Date Posted: 4:53 PM | 252 Views
Micro-star International (MSI), the world’s best-selling gaming laptop brand, is taking a big step in announcing their new concept corner to be launch this December 2017. See More

 
PLDT Highlights Aggressive Fiber Network Rollout at 2018 FTTH APAC Confab
Techworld Date Posted: 10 May 2018 10:45 AM | 208 Views
Telco leader PLDT outlined its nationwide fiber network rollout efforts at the recent FTTH APAC Conference held at the Shangri-La at The Fort. . See More
 
PLDT Highlights Aggressive Fiber Network Rollout at 2018 FTTH APAC Confab
Techworld Date Posted: 10:45 AM | 208 Views
Telco leader PLDT outlined its nationwide fiber network rollout efforts at the recent FTTH APAC Conference held at the Shangri-La at The Fort. See More

 
Smart Eye: Kaspersky Lab Discovers Severe Flaws That Could Transform Popular Smart Cameras into Surveillance Tool
Techworld Date Posted: 13 March 2018 4:32 PM | 267 Views
Kaspersky Lab researchers have discovered multiple security vulnerabilities in popular smart cameras that are frequently used as baby monitors, or for internal home and office security surveillance. According to the research, the uncovered flaws.... See More
 
Smart Eye: Kaspersky Lab Discovers Severe Flaws That Could Transform Popular Smart Cameras into Surveillance Tool
Techworld Date Posted: 4:32 PM | 267 Views
Kaspersky Lab researchers have discovered multiple security vulnerabilities in popular smart cameras that are frequently used as baby monitors, or for internal home and office security surveillance. According to the research, the uncovered flaws...See More

 
Vertiv Completes Transformation; Celebrates in Manila
Techworld Date Posted: 23 September 2017 11:26 AM | 274 Views
Vertiv regional headquarters and market unit office in the Philippines recently held a "Day One" welcoming event for its employees, culminating the transition from Emerson Network Power, acquired by US-based Platinum Equity for $4.... See More
 
Vertiv Completes Transformation; Celebrates in Manila
Techworld Date Posted: 11:26 AM | 274 Views
Vertiv regional headquarters and market unit office in the Philippines recently held a "Day One" welcoming event for its employees, culminating the transition from Emerson Network Power, acquired by US-based Platinum Equity for $4...See More

 
Symantec Significantly Expands Cloud Security Portfolio with Innovations to Secure Cloud Generation Applications, Workloads and Infrastructure
Techworld Date Posted: 6 November 2018 8:50 AM | 105 Views
Symantec Corp (NASDAQ: SYMC), the world’s leading cyber security company, today announced innovations and expansions to its cloud security portfolio, designed to help organizations protect the cloud generation applications and infrastructure they rely on.. See More
 
Symantec Significantly Expands Cloud Security Portfolio with Innovations to Secure Cloud Generation Applications, Workloads and Infrastructure
Techworld Date Posted: 8:50 AM | 105 Views
Symantec Corp (NASDAQ: SYMC), the world’s leading cyber security company, today announced innovations and expansions to its cloud security portfolio, designed to help organizations protect the cloud generation applications and infrastructure they rely on.See More

 
Power Mac Center Pioneers iPhone Display Repairs in PH
Techworld Date Posted: 23 July 2018 2:46 PM | 550 Views
Power Mac Center’s Apple Authorized Service Provider is now offering replacement repair services for damaged iPhone display screens. It is the first Service Center in the country to do so. Coverage includes cracked screens.... See More
 
Power Mac Center Pioneers iPhone Display Repairs in PH
Techworld Date Posted: 2:46 PM | 550 Views
Power Mac Center’s Apple Authorized Service Provider is now offering replacement repair services for damaged iPhone display screens. It is the first Service Center in the country to do so. Coverage includes cracked screens...See More

 
Happy 25th Birthday ThinkPad
Techworld Date Posted: 14 October 2017 1:48 PM | 430 Views
Lenovo (HKSE: 992) (ADR: LNVGY) today proudly announced, at an exclusive event at the Yamato Labs in Japan, the birthplace of ThinkPad, a limited-edition model to celebrate twenty-five years of design and engineering innovation.. See More
 
Happy 25th Birthday ThinkPad
Techworld Date Posted: 1:48 PM | 430 Views
Lenovo (HKSE: 992) (ADR: LNVGY) today proudly announced, at an exclusive event at the Yamato Labs in Japan, the birthplace of ThinkPad, a limited-edition model to celebrate twenty-five years of design and engineering innovation.See More

 
Synology® Unveils Surveillance Station 8.2 to Liberate Phone-Based Surveillance
Techworld Date Posted: 26 October 2018 4:28 PM | 81 Views
Synology Inc. recently announced Surveillance Station 8.2. Locally available in the Philippines, this release showcases LiveCam, a brand new security camera app that instantly turns a spare phone into an IP camera.. See More
 
Synology® Unveils Surveillance Station 8.2 to Liberate Phone-Based Surveillance
Techworld Date Posted: 4:28 PM | 81 Views
Synology Inc. recently announced Surveillance Station 8.2. Locally available in the Philippines, this release showcases LiveCam, a brand new security camera app that instantly turns a spare phone into an IP camera.See More


Power by

Download Free AZ | Free Wordpress Themes