The Kaspersky Lab Global Research and Analysis Team (GReAT) was recognized with the Annual Péter Szőr Award for Technical Security Research for its work on uncovering and analyzing the ShadowPad operation, one of the most significant supply-chain attacks known to date. The award was received at Virus Bulletin 2018, which took place on October 3 through October 5 at the Fairmont Queen Elizabeth Hotel in Montreal, Quebec, Canada.

 

In July 2017, Kaspersky Lab researchers discovered ShadowPad, a backdoor hidden inside server management software that is used by hundreds of enterprises around the world. The malicious code was planted in the latest updates of this software, which is used in industries like financial services, education, telecoms, manufacturing, energy and transportation.

 

Kaspersky Lab GReAT researchers found that following the installation of an infected software update, the malicious module would send DNS-queries to specific domains (its command and control server) at a frequency of once every eight hours. The request would contain basic information about the victim’s system.

 

If the attackers considered the system to be ‘interesting,’ the command server would reply and activate a fully-fledged backdoor platform that would silently deploy itself inside the attacked computer.

 

After that, on command from the attackers, the backdoor platform would be able to download and execute further malicious code. The threat actor behind the attack is believed to be Chinese-speaking.

 

“As the widely reported story of ‘NotPetya’ and ‘CCleaner’ show, supply chain attacks are a huge problem. ShadowPad emphasizes the point that such attacks can be very subtle and remain active for a very long time,” said Martijn Grooten, Editor, Virus Bulletin. “Kaspersky Lab’s analysis provided both a general overview and very technical details of the attack, which will hopefully lead to more awareness of this threat and the issue of supply-chain attacks in general.”

 

The Péter Szőr award aims to recognize the best piece of technical security research published each year. Virus Bulletin created the award in Szőr’s honor after the researcher and Virus Bulletin advisory board member passed away in November 2013.

 

Nominations for the award are sought from the security community at large, and a final shortlist is voted on by the Virus Bulletin advisory board. The award is presented each year at the annual Virus Bulletin conference.

 

“ShadowPad is a prime example of how dangerous and wide-scale a successful supply-chain attack can be. Had it not been detected and patched so quickly, ShadowPad could have affected thousands of organizations worldwide,” said Costin Raiu, Director, GReAT. “Receiving the Péter Szőr award at Virus Bulletin is an absolute honor, and we are grateful not only for the recognition, but for the opportunity to continue protecting the world from cybercrime.”

 

The findings were published on August 15, 2017, and the full report can be accessed on Securelist.com.


RECOMMENDED ARTICLE FOR TECHWORLD


 
HyperX Now the Official Gaming Headset Partner of the Philadelphia 76ers
Techworld Date Posted: 24 October 2017 2:25 PM | 370 Views
HyperX®, the gaming division of Kingston Technology, today announced the official headset sponsorship of the Philadelphia 76ers, the first professional NBA team to partner with HyperX. During the 2017-2018 NBA season, HyperX will bringing.... See More
 
HyperX Now the Official Gaming Headset Partner of the Philadelphia 76ers
Techworld Date Posted: 2:25 PM | 370 Views
HyperX®, the gaming division of Kingston Technology, today announced the official headset sponsorship of the Philadelphia 76ers, the first professional NBA team to partner with HyperX. During the 2017-2018 NBA season, HyperX will bringing...See More

 
Tech4ED Named as Finalist in IDC Smart City Asia Pacific Awards (SCAPA) 2017
Techworld Date Posted: 20 June 2017 2:32 PM | 383 Views
MANILA – IDC Government Insights Asia Pacific announced today that Tech4ED has been chosen as one of the finalists in the annual IDC Smart City Asia Pacific Awards (SCAPA) 2017 under the category of.... See More
 
Tech4ED Named as Finalist in IDC Smart City Asia Pacific Awards (SCAPA) 2017
Techworld Date Posted: 2:32 PM | 383 Views
MANILA – IDC Government Insights Asia Pacific announced today that Tech4ED has been chosen as one of the finalists in the annual IDC Smart City Asia Pacific Awards (SCAPA) 2017 under the category of...See More

 
PLDT-Smart Omega Gears Up for Country’s First Franchise-Based Esports League
Techworld Date Posted: 14 March 2019 9:12 AM | 154 Views
PLDT-Smart Omega, the professional esports team of leading telco and digital services provider PLDT and its mobile arm Smart Communications, is one of the five inaugural teams competing in The Nationals, the country's first.... See More
 
PLDT-Smart Omega Gears Up for Country’s First Franchise-Based Esports League
Techworld Date Posted: 9:12 AM | 154 Views
PLDT-Smart Omega, the professional esports team of leading telco and digital services provider PLDT and its mobile arm Smart Communications, is one of the five inaugural teams competing in The Nationals, the country's first...See More

 
Philippine Robotics Team Awarded to Compete Globally
Techworld Date Posted: 24 August 2018 4:33 PM | 391 Views
Various schools across the country will represent the Philippines at the World Robotics Olympiad 2018 (WRO 2018) happening on November 15 to 19 in Chiang Mai, Thailand, after being proclaimed as winners of the.... See More
 
Philippine Robotics Team Awarded to Compete Globally
Techworld Date Posted: 4:33 PM | 391 Views
Various schools across the country will represent the Philippines at the World Robotics Olympiad 2018 (WRO 2018) happening on November 15 to 19 in Chiang Mai, Thailand, after being proclaimed as winners of the...See More

 
Kaspersky Lab Moving Core Infrastructure from Russia to Switzerland; Opening First Transparency Center
Techworld Date Posted: 16 May 2018 3:56 PM | 640 Views
As part of its Global Transparency Initiative, Kaspersky Lab is adapting its infrastructure to move a number of core processes from Russia to Switzerland.. See More
 
Kaspersky Lab Moving Core Infrastructure from Russia to Switzerland; Opening First Transparency Center
Techworld Date Posted: 3:56 PM | 640 Views
As part of its Global Transparency Initiative, Kaspersky Lab is adapting its infrastructure to move a number of core processes from Russia to Switzerland.See More

 
D-Link’s Enhanced Wi-Fi Gigabit Routers, Security Cameras Deliver Improved Connectivity, Security
Techworld Date Posted: 20 March 2018 5:05 PM | 615 Views
Manila, Philippines – D-Link, one of the world’s biggest suppliers of home networking products, matches the growing demand for high-speed connectivity and improved home security with enhanced Wi-Fi gigabit routers and security cameras.. See More
 
D-Link’s Enhanced Wi-Fi Gigabit Routers, Security Cameras Deliver Improved Connectivity, Security
Techworld Date Posted: 5:05 PM | 615 Views
Manila, Philippines – D-Link, one of the world’s biggest suppliers of home networking products, matches the growing demand for high-speed connectivity and improved home security with enhanced Wi-Fi gigabit routers and security cameras.See More

 
Transcend Expands Its Portable SSD Lineup with 3 New Blazing-Fast USB Type-C Models
Techworld Date Posted: 26 February 2019 1:53 PM | 177 Views
Transcend Information Inc., a leading manufacturer of storage and multimedia products, has announced the release of their new series of USB Type-C portable SSDs, which include the ESD230C, ESD240C, and ESD250C. . See More
 
Transcend Expands Its Portable SSD Lineup with 3 New Blazing-Fast USB Type-C Models
Techworld Date Posted: 1:53 PM | 177 Views
Transcend Information Inc., a leading manufacturer of storage and multimedia products, has announced the release of their new series of USB Type-C portable SSDs, which include the ESD230C, ESD240C, and ESD250C. See More

 
GeForce-Certified iCafes Cross 250 Mark in Just Two Years
Techworld Date Posted: 23 October 2017 10:21 AM | 749 Views
NVIDIA today announced that there are now more than 250 GeForce®-certified iCafes in operation across Indonesia, Malaysia, Taiwan, Thailand, the Philippines, South Korea and Vietnam.. See More
 
GeForce-Certified iCafes Cross 250 Mark in Just Two Years
Techworld Date Posted: 10:21 AM | 749 Views
NVIDIA today announced that there are now more than 250 GeForce®-certified iCafes in operation across Indonesia, Malaysia, Taiwan, Thailand, the Philippines, South Korea and Vietnam.See More

 
Protect Scattered Data in Physical, Virtual, and Cloud Workloads with the Active Backup Suite
Techworld Date Posted: 29 June 2018 4:21 PM | 312 Views
Synology today announced the official release of two major backup applications in Active Backup suite of packages, the official version of Active Backup for Office 365 that supports SaaS cloud backup, and the beta.... See More
 
Protect Scattered Data in Physical, Virtual, and Cloud Workloads with the Active Backup Suite
Techworld Date Posted: 4:21 PM | 312 Views
Synology today announced the official release of two major backup applications in Active Backup suite of packages, the official version of Active Backup for Office 365 that supports SaaS cloud backup, and the beta...See More

 
Kaspersky Lab Bags Two Wins At Networks Asia Information Management Awards 2018
Techworld Date Posted: 11 June 2018 4:19 PM | 505 Views
(From left) Jesmond Chang, Head of Corporate Communications for Kaspersky Lab APAC, receives the award from Nikolay Novozhilov, Head of Digital Products at NTUC Link   Kaspersky Lab announced its win of two cybersecurity.... See More
 
Kaspersky Lab Bags Two Wins At Networks Asia Information Management Awards 2018
Techworld Date Posted: 4:19 PM | 505 Views
(From left) Jesmond Chang, Head of Corporate Communications for Kaspersky Lab APAC, receives the award from Nikolay Novozhilov, Head of Digital Products at NTUC Link   Kaspersky Lab announced its win of two cybersecurity...See More


Power by

Download Free AZ | Free Wordpress Themes