The Kaspersky Lab Global Research and Analysis Team (GReAT) was recognized with the Annual Péter Szőr Award for Technical Security Research for its work on uncovering and analyzing the ShadowPad operation, one of the most significant supply-chain attacks known to date. The award was received at Virus Bulletin 2018, which took place on October 3 through October 5 at the Fairmont Queen Elizabeth Hotel in Montreal, Quebec, Canada.

 

In July 2017, Kaspersky Lab researchers discovered ShadowPad, a backdoor hidden inside server management software that is used by hundreds of enterprises around the world. The malicious code was planted in the latest updates of this software, which is used in industries like financial services, education, telecoms, manufacturing, energy and transportation.

 

Kaspersky Lab GReAT researchers found that following the installation of an infected software update, the malicious module would send DNS-queries to specific domains (its command and control server) at a frequency of once every eight hours. The request would contain basic information about the victim’s system.

 

If the attackers considered the system to be ‘interesting,’ the command server would reply and activate a fully-fledged backdoor platform that would silently deploy itself inside the attacked computer.

 

After that, on command from the attackers, the backdoor platform would be able to download and execute further malicious code. The threat actor behind the attack is believed to be Chinese-speaking.

 

“As the widely reported story of ‘NotPetya’ and ‘CCleaner’ show, supply chain attacks are a huge problem. ShadowPad emphasizes the point that such attacks can be very subtle and remain active for a very long time,” said Martijn Grooten, Editor, Virus Bulletin. “Kaspersky Lab’s analysis provided both a general overview and very technical details of the attack, which will hopefully lead to more awareness of this threat and the issue of supply-chain attacks in general.”

 

The Péter Szőr award aims to recognize the best piece of technical security research published each year. Virus Bulletin created the award in Szőr’s honor after the researcher and Virus Bulletin advisory board member passed away in November 2013.

 

Nominations for the award are sought from the security community at large, and a final shortlist is voted on by the Virus Bulletin advisory board. The award is presented each year at the annual Virus Bulletin conference.

 

“ShadowPad is a prime example of how dangerous and wide-scale a successful supply-chain attack can be. Had it not been detected and patched so quickly, ShadowPad could have affected thousands of organizations worldwide,” said Costin Raiu, Director, GReAT. “Receiving the Péter Szőr award at Virus Bulletin is an absolute honor, and we are grateful not only for the recognition, but for the opportunity to continue protecting the world from cybercrime.”

 

The findings were published on August 15, 2017, and the full report can be accessed on Securelist.com.


RECOMMENDED ARTICLE FOR TECHWORLD


 
Kaspersky Lab Challenges Whitehats to Find Flaws of IoT Devices in Global Competition
Techworld Date Posted: 25 October 2018 1:49 PM | 88 Views
Kaspersky Lab is inviting ethical hackers, known as whitehats, from across the world to test the security of smart devices and industrial systems as it launches its fourth international industrial Capture the Flag (CTF).... See More
 
Kaspersky Lab Challenges Whitehats to Find Flaws of IoT Devices in Global Competition
Techworld Date Posted: 1:49 PM | 88 Views
Kaspersky Lab is inviting ethical hackers, known as whitehats, from across the world to test the security of smart devices and industrial systems as it launches its fourth international industrial Capture the Flag (CTF)...See More

 
IPC Shares Game Changing Nature of Productivity Apps to Kick Off #DiscoverDigital Seminar Series
Techworld Date Posted: 20 March 2018 9:34 AM | 432 Views
Local cloud services pioneer IPC (IP Converge Data Services, Inc.) opened its digital transformation seminar series this year with an insightful discourse on how productivity applications are changing the workplace for the better. Dubbed.... See More
 
IPC Shares Game Changing Nature of Productivity Apps to Kick Off #DiscoverDigital Seminar Series
Techworld Date Posted: 9:34 AM | 432 Views
Local cloud services pioneer IPC (IP Converge Data Services, Inc.) opened its digital transformation seminar series this year with an insightful discourse on how productivity applications are changing the workplace for the better. Dubbed...See More

 
Kaspersky Lab Launches ‘Secure Your Ferrari Experience’ Competition in Asia Pacific
Techworld Date Posted: 23 September 2017 11:41 AM | 282 Views
Kaspersky Lab has launched the ‘Secure Your Ferrari Experience' for the second year running, offering five winners from Asia Pacific a chance to visit the Home of Ferrari in Maranello, Italy. The "Secure Your Ferrari.... See More
 
Kaspersky Lab Launches ‘Secure Your Ferrari Experience’ Competition in Asia Pacific
Techworld Date Posted: 11:41 AM | 282 Views
Kaspersky Lab has launched the ‘Secure Your Ferrari Experience' for the second year running, offering five winners from Asia Pacific a chance to visit the Home of Ferrari in Maranello, Italy. The "Secure Your Ferrari...See More

 
Power Mac Center Opens Biggest Store in Festival Mall, Alabang
Techworld Date Posted: 15 December 2017 10:27 AM | 293 Views
Head south this weekend as premier Apple partner Power Mac Center is opening its biggest branch in the country yet. The brand new store and service center. See More
 
Power Mac Center Opens Biggest Store in Festival Mall, Alabang
Techworld Date Posted: 10:27 AM | 293 Views
Head south this weekend as premier Apple partner Power Mac Center is opening its biggest branch in the country yet. The brand new store and service centerSee More

 
GOC GEC First Time in Thailand: World Record Broken during GALAX Overclocking & eSports Carnival
Techworld Date Posted: 1 December 2017 3:14 PM | 305 Views
It’s a big day for GALAX the past weekend. The GALAX 9th Overclocking & eSports Carnival were concluded with success last Saturday.. See More
 
GOC GEC First Time in Thailand: World Record Broken during GALAX Overclocking & eSports Carnival
Techworld Date Posted: 3:14 PM | 305 Views
It’s a big day for GALAX the past weekend. The GALAX 9th Overclocking & eSports Carnival were concluded with success last Saturday.See More

 
New Variant of SynAck Ransomware Uses Sophisticated Doppelgänging Technique to Evade Security
Techworld Date Posted: 31 May 2018 10:59 AM | 286 Views
Kaspersky Lab researchers have discovered a new variant of the SynAck ransomware Trojan using the Doppelgänging technique to bypass anti-virus security by hiding in legitimate processes. This is the first time the Doppelgänging technique.... See More
 
New Variant of SynAck Ransomware Uses Sophisticated Doppelgänging Technique to Evade Security
Techworld Date Posted: 10:59 AM | 286 Views
Kaspersky Lab researchers have discovered a new variant of the SynAck ransomware Trojan using the Doppelgänging technique to bypass anti-virus security by hiding in legitimate processes. This is the first time the Doppelgänging technique...See More

 
Epson Launches First 12,000 Lumen Native 4K 3LCD Laser Projector and New 20,000 Lumen Projector
Techworld Date Posted: 9 January 2019 5:02 PM | 83 Views
Epson, the number-one selling projector brand, has announced the launch of two new 3LCD laser projectors – The EB-L12000Q, which is the industry’s first 12,000 lumen native 4K 3LCD laser projector. See More
 
Epson Launches First 12,000 Lumen Native 4K 3LCD Laser Projector and New 20,000 Lumen Projector
Techworld Date Posted: 5:02 PM | 83 Views
Epson, the number-one selling projector brand, has announced the launch of two new 3LCD laser projectors – The EB-L12000Q, which is the industry’s first 12,000 lumen native 4K 3LCD laser projectorSee More

 
COLORFUL Debuts Most Powerful Gaming Graphics Card at CGU 2018: COLORFUL iGame GeForce RTX 2080 Ti KUDAN
Techworld Date Posted: 7 January 2019 2:43 PM | 55 Views
Colorful Technology Company Limited, professional manufacturer of graphics cards, motherboards and high-performance storage solutions is proud to announce its most powerful graphics card to date with the latest entry bearing the title of KUDAN.. See More
 
COLORFUL Debuts Most Powerful Gaming Graphics Card at CGU 2018: COLORFUL iGame GeForce RTX 2080 Ti KUDAN
Techworld Date Posted: 2:43 PM | 55 Views
Colorful Technology Company Limited, professional manufacturer of graphics cards, motherboards and high-performance storage solutions is proud to announce its most powerful graphics card to date with the latest entry bearing the title of KUDAN.See More

 
Industrial Networks of Energy and ICS Integration Companies Hit by More Cyberattacks than Any Other Industry in H2, 2017
Techworld Date Posted: 28 March 2018 3:32 PM | 365 Views
Almost 40% of all industrial control systems (ICS) in energy organizations protected by Kaspersky Lab solutions were attacked by malware at least once during the last six months of 2017, closely followed by 35.3%.... See More
 
Industrial Networks of Energy and ICS Integration Companies Hit by More Cyberattacks than Any Other Industry in H2, 2017
Techworld Date Posted: 3:32 PM | 365 Views
Almost 40% of all industrial control systems (ICS) in energy organizations protected by Kaspersky Lab solutions were attacked by malware at least once during the last six months of 2017, closely followed by 35.3%...See More

 
Synology® Announces DiskStation DS1618+
Techworld Date Posted: 21 May 2018 4:45 PM | 390 Views
Synology® Inc. today launched DiskStation DS1618+, a 6-bay NAS featuring the Intel Atom® C3538. For tech enthusiasts and small to medium sized businesses, DS1618+ is the perfect all-in-one solution for file serving, application hosting,.... See More
 
Synology® Announces DiskStation DS1618+
Techworld Date Posted: 4:45 PM | 390 Views
Synology® Inc. today launched DiskStation DS1618+, a 6-bay NAS featuring the Intel Atom® C3538. For tech enthusiasts and small to medium sized businesses, DS1618+ is the perfect all-in-one solution for file serving, application hosting,...See More


Power by

Download Free AZ | Free Wordpress Themes