Category Archives: APT
Does SolarWinds change the rules in offensive cyber? Experts say no, but offer alternatives
While tempting, most experts agree that hack-back strategies are a bad idea for companies. But there are tactics that can help deter nation-state actors and limit their ability to penetrate networks.
The post Does SolarWinds change the rules in offensive cyber? Experts say no, but offer alternatives appeared first on SC Media.
Sunbust avoided indicators of compromise with SolarWinds hack, but left breadcrumbs
Joe Slowik, senior security researcher at DomainTools, spoke to SC Media about how the SolarWind attackers remained undetected for so long, and how domain data could be used to weaponize network observables against sophisticated attackers.
The post Sunbust avoided indicators of compromise with SolarWinds hack, but left breadcrumbs appeared first on SC Media.
Cybersecurity Collaborative creates task force to mitigate third-party risk
Recent supply chain attacks prompted cybersecurity professionals, under the auspices of Cybersecurity Collaborative, to stand up a task force focused on minimizing third-party risk. The need for the Third-Party Risk Task Force, which kicked off this week, has been amplified by recent advanced persistent threat attacks that infiltrated corporate and government networks, due to security…
The post Cybersecurity Collaborative creates task force to mitigate third-party risk appeared first on SC Media.
Researchers see links between SolarWinds Sunburst malware and Russian Turla APT group
While researchers may want to invest time and energy towards attributing the latest high-profile attack to a particular adversary, more productive is the ability to see similarities in the underlying techniques employed in the attack were to prior attacks.
The post Researchers see links between SolarWinds Sunburst malware and Russian Turla APT group appeared first on SC Media.
Chinese espionage group APT27 moves into ransomware
The Chinese espionage group APT27 has moved into more financially-motivated cybercrimes, using ransomware to encrypt core servers at major gaming companies worldwide.
The post Chinese espionage group APT27 moves into ransomware appeared first on SC Media.