The Kaspersky Lab Global Research and Analysis Team (GReAT) was recognized with the Annual Péter Szőr Award for Technical Security Research for its work on uncovering and analyzing the ShadowPad operation, one of the most significant supply-chain attacks known to date. The award was received at Virus Bulletin 2018, which took place on October 3 through October 5 at the Fairmont Queen Elizabeth Hotel in Montreal, Quebec, Canada.

 

In July 2017, Kaspersky Lab researchers discovered ShadowPad, a backdoor hidden inside server management software that is used by hundreds of enterprises around the world. The malicious code was planted in the latest updates of this software, which is used in industries like financial services, education, telecoms, manufacturing, energy and transportation.

 

Kaspersky Lab GReAT researchers found that following the installation of an infected software update, the malicious module would send DNS-queries to specific domains (its command and control server) at a frequency of once every eight hours. The request would contain basic information about the victim’s system.

 

If the attackers considered the system to be ‘interesting,’ the command server would reply and activate a fully-fledged backdoor platform that would silently deploy itself inside the attacked computer.

 

After that, on command from the attackers, the backdoor platform would be able to download and execute further malicious code. The threat actor behind the attack is believed to be Chinese-speaking.

 

“As the widely reported story of ‘NotPetya’ and ‘CCleaner’ show, supply chain attacks are a huge problem. ShadowPad emphasizes the point that such attacks can be very subtle and remain active for a very long time,” said Martijn Grooten, Editor, Virus Bulletin. “Kaspersky Lab’s analysis provided both a general overview and very technical details of the attack, which will hopefully lead to more awareness of this threat and the issue of supply-chain attacks in general.”

 

The Péter Szőr award aims to recognize the best piece of technical security research published each year. Virus Bulletin created the award in Szőr’s honor after the researcher and Virus Bulletin advisory board member passed away in November 2013.

 

Nominations for the award are sought from the security community at large, and a final shortlist is voted on by the Virus Bulletin advisory board. The award is presented each year at the annual Virus Bulletin conference.

 

“ShadowPad is a prime example of how dangerous and wide-scale a successful supply-chain attack can be. Had it not been detected and patched so quickly, ShadowPad could have affected thousands of organizations worldwide,” said Costin Raiu, Director, GReAT. “Receiving the Péter Szőr award at Virus Bulletin is an absolute honor, and we are grateful not only for the recognition, but for the opportunity to continue protecting the world from cybercrime.”

 

The findings were published on August 15, 2017, and the full report can be accessed on Securelist.com.


RECOMMENDED ARTICLE FOR TECHWORLD


 
Silence Trojan: The New Russian-Speaking Hacking Group Hunts for Financial Organizations
Techworld Date Posted: 6 November 2017 4:02 PM | 209 Views
In September 2017 Kaspersky Lab researchers identified a new series of targeted attacks against at least 10 financial organizations in multiple regions including Russia, Armenia, and Malaysia. The hits are being performed by a.... See More
 
Silence Trojan: The New Russian-Speaking Hacking Group Hunts for Financial Organizations
Techworld Date Posted: 4:02 PM | 209 Views
In September 2017 Kaspersky Lab researchers identified a new series of targeted attacks against at least 10 financial organizations in multiple regions including Russia, Armenia, and Malaysia. The hits are being performed by a...See More

 
New Game Ready Driver Is Optimised for Star Wars Battlefront II, And Improves Destiny 2 Performance by up to 53%
Techworld Date Posted: 16 November 2017 5:26 PM | 215 Views
Hot on the heels of the Star Wars inspired GPUs comes the Star Wars TM BattlefrontTM II Game Ready driver from NVIDIA. Star Wars Battlefront II is launching worldwide on November 17, 2017, but.... See More
 
New Game Ready Driver Is Optimised for Star Wars Battlefront II, And Improves Destiny 2 Performance by up to 53%
Techworld Date Posted: 5:26 PM | 215 Views
Hot on the heels of the Star Wars inspired GPUs comes the Star Wars TM BattlefrontTM II Game Ready driver from NVIDIA. Star Wars Battlefront II is launching worldwide on November 17, 2017, but...See More

 
Fake Facebook Sites Account for 60% of Social Network Phishing in Early 2018
Techworld Date Posted: 24 May 2018 1:32 PM | 166 Views
In the first quarter of 2018, Kaspersky Lab’s anti-phishing technologies prevented more than 3.6 million attempts to visit fraudulent social network pages, of which 60% were fake Facebook pages. The results, according to Kaspersky.... See More
 
Fake Facebook Sites Account for 60% of Social Network Phishing in Early 2018
Techworld Date Posted: 1:32 PM | 166 Views
In the first quarter of 2018, Kaspersky Lab’s anti-phishing technologies prevented more than 3.6 million attempts to visit fraudulent social network pages, of which 60% were fake Facebook pages. The results, according to Kaspersky...See More

 
PLDT Home, the Country’s No.1 Home Broadband, Launches its First Prepaid Broadband Service
Techworld Date Posted: 10 August 2018 2:52 PM | 246 Views
  With the company’s vision of bringing world-class Internet to Filipino families, PLDT has launched its first ever PLDT Home Prepaid WiFi, an affordable service that makes it easier than ever for more families.... See More
 
PLDT Home, the Country’s No.1 Home Broadband, Launches its First Prepaid Broadband Service
Techworld Date Posted: 2:52 PM | 246 Views
  With the company’s vision of bringing world-class Internet to Filipino families, PLDT has launched its first ever PLDT Home Prepaid WiFi, an affordable service that makes it easier than ever for more families...See More

 
SAP Names Scott Russell President of SAP Asia Pacific Japan
Techworld Date Posted: 20 July 2017 2:31 PM | 169 Views
SAP SE (NYSE: SAP) today announced that Scott Russell has been appointed president of SAP Asia Pacific Japan (APJ). In his new role, Scott will be responsible for growing SAP’s business and presence in.... See More
 
SAP Names Scott Russell President of SAP Asia Pacific Japan
Techworld Date Posted: 2:31 PM | 169 Views
SAP SE (NYSE: SAP) today announced that Scott Russell has been appointed president of SAP Asia Pacific Japan (APJ). In his new role, Scott will be responsible for growing SAP’s business and presence in...See More

 
Excellent Wireless Coverage with the DAP-1860 AC2600 Wi-Fi Range Extender
Techworld Date Posted: 14 October 2017 1:44 PM | 152 Views
Manila, Philippines –Imagine listening to your favorite tunes on your phone, only to have your wireless connection cut off when you leave your bedroom right at the song’s best part. Or imagine streaming that.... See More
 
Excellent Wireless Coverage with the DAP-1860 AC2600 Wi-Fi Range Extender
Techworld Date Posted: 1:44 PM | 152 Views
Manila, Philippines –Imagine listening to your favorite tunes on your phone, only to have your wireless connection cut off when you leave your bedroom right at the song’s best part. Or imagine streaming that...See More

 
PLDT Offers Lowest Call Rate to All Networks
Techworld Date Posted: 12 April 2017 2:25 PM | 196 Views
Leading telecoms and digital services provider, PLDT, introduces its lowest call plan offer, the All Net Fam Call 299, starting April. The All Net Fam Call 299 allows subscribers to make 100 minutes of landline.... See More
 
PLDT Offers Lowest Call Rate to All Networks
Techworld Date Posted: 2:25 PM | 196 Views
Leading telecoms and digital services provider, PLDT, introduces its lowest call plan offer, the All Net Fam Call 299, starting April. The All Net Fam Call 299 allows subscribers to make 100 minutes of landline...See More

PCBG Gaming Crew
2017 Mid-Season Invitational Mania
Techworld • By: PCBG Gaming Crew | Date Posted: 10:51 AM | 939 Views
As the first half of major league tournaments all over the globe has been exhausted and judged, the 2017 Mid-Season Invitational will begin on the 29th of April with massive hungry league fans waiting.... See More
PCBG Gaming Crew
2017 Mid-Season Invitational Mania
Techworld • By: PCBG Gaming Crew | Date Posted: 10:51 AM | 939 Views
As the first half of major league tournaments all over the globe has been exhausted and judged, the 2017 Mid-Season Invitational will begin on the 29th of April with massive hungry league fans waiting...See More

 
Kingston Adds Lower 4GB and 8GB Capacities to DataTraveler 2000 Encrypted USB with Alphanumeric Keypad Acces
Techworld Date Posted: 16 August 2017 1:38 PM | 151 Views
Kingston, the independent world leader in memory products, has added 4GB and 8GB capacity sizes to its family of DataTraveler 2000�encrypted USB Flash drives. The smaller capacities join the existing 16GB, 32GB and 64GB.... See More
 
Kingston Adds Lower 4GB and 8GB Capacities to DataTraveler 2000 Encrypted USB with Alphanumeric Keypad Acces
Techworld Date Posted: 1:38 PM | 151 Views
Kingston, the independent world leader in memory products, has added 4GB and 8GB capacity sizes to its family of DataTraveler 2000�encrypted USB Flash drives. The smaller capacities join the existing 16GB, 32GB and 64GB...See More

 
HyperX Now the Official Gaming Headset Partner of the Dallas Mavericks and the Future Dallas NBA 2K League Team
Techworld Date Posted: 7 December 2017 3:19 PM | 220 Views
HyperX®, the gaming division of Kingston Technology, announced the official gaming headset sponsorship of the Dallas Mavericks and the future Dallas NBA 2K League team. . See More
 
HyperX Now the Official Gaming Headset Partner of the Dallas Mavericks and the Future Dallas NBA 2K League Team
Techworld Date Posted: 3:19 PM | 220 Views
HyperX®, the gaming division of Kingston Technology, announced the official gaming headset sponsorship of the Dallas Mavericks and the future Dallas NBA 2K League team. See More


Power by

Download Free AZ | Free Wordpress Themes