GReAT

Kaspersky releases predictions for Advanced Threats Landscape in 2024

Retrieved on: 
Tuesday, November 14, 2023
Transfer, Attention, Organization, LLM, Research, Device driver, Advanced persistent threat, Okta, Kaspersky Lab, Intelligence, Kernel Patch Protection, Data loss prevention software, MOVEit, WHCP, Software, BYOVD, EV, AI, APT, SOC, SMS, MFT, GReAT, Architecture, Medical device, Risk management, Retail

WOBURN, Mass., Nov. 14, 2023 /PRNewswire/ -- Kaspersky Global Research and Analysis Team (GReAT) experts have released their predictions for Advanced Persistent Threats (APTs) in 2024 in the kickoff to the annual Kaspersky Security Bulletin series.

Key Points: 
  • WOBURN, Mass., Nov. 14, 2023 /PRNewswire/ -- Kaspersky Global Research and Analysis Team (GReAT) experts have released their predictions for Advanced Persistent Threats (APTs) in 2024 in the kickoff to the annual Kaspersky Security Bulletin series.
  • Other advanced threat predictions for 2024 include:
    - Supply chain attacks as a service: operators bulk-buying access
    Supply chain attacks targeting smaller firms to breach major ones: the Okta breaches in 2022 - 2023 highlight the threat's scale.
  • 2024 might witness new developments in dark web access market activities related to supply chains, enabling more efficient and large-scale attacks.
  • The APT predictions have been developed thanks to Kaspersky's threat intelligence services used around the world.

Kaspersky finds BlueNoroff APT actor disguised itself as VC firms to deliver new malware

Retrieved on: 
Tuesday, December 27, 2022
Lazarus, Mizuho Financial Group, Advanced persistent threat, Software, MDR, GReAT, Business, UEA, Attack, Organization, APT, EDR, Decentralized finance, Financial technology, MOTW, WannaCry ransomware attack, Epidemic, VBScript, Internet, Microsoft Windows, Autumn, ISO, Cryptocurrency, Medical imaging, Blockchain, Kaspersky Lab

Woburn, MA, Dec. 27, 2022 (GLOBE NEWSWIRE) -- Kaspersky researchers have discovered that the infamous Advanced Persistent Threat (APT) actor BlueNoroff recently added sophisticated new malware strains to its arsenal.

Key Points: 
  • Woburn, MA, Dec. 27, 2022 (GLOBE NEWSWIRE) -- Kaspersky researchers have discovered that the infamous Advanced Persistent Threat (APT) actor BlueNoroff recently added sophisticated new malware strains to its arsenal.
  • BlueNoroff is known as the threat actor that targets financial entities’ cryptocurrency around the world, specifically aiming at venture capital firms, crypto startups, and banks.
  • In January 2022, Kaspersky experts reported on a series of attacks detected on cryptocurrency startups worldwide, conducted by BlueNoroff, but afterwards there was a lull.
  • However, based on Kaspersky’s telemetry, this autumn, the threat actor returned to attack, even more sophisticated and active than ever before.

The next WannaCry and drone hacking: Kaspersky predicts Advanced Persistent Threat trends of 2023

Retrieved on: 
Monday, November 14, 2022
WannaCry ransomware attack, Plausible deniability, Wi-Fi, Instability, EternalBlue, KSB, Viasat, Collection, Intelligence, WPA, Hacking, APTS, APT, Hope, Epidemic, USB, GReAT, Risk management, Online shopping, Medical device, Ninja, Kaspersky Lab, Silver

Woburn, MA, Nov. 14, 2022 (GLOBE NEWSWIRE) -- Kaspersky researchers presented their predictions of the future for advanced persistent threats (APTs), defining the changes in the threat landscape that will emerge in 2023.

Key Points: 
  • Woburn, MA, Nov. 14, 2022 (GLOBE NEWSWIRE) -- Kaspersky researchers presented their predictions of the future for advanced persistent threats (APTs), defining the changes in the threat landscape that will emerge in 2023.
  • The last such incident was the infamous WannaCry ransomware-worm, leveraging the extremely potent EternalBlue vulnerability to automatically spread to vulnerable machines.
  • Kaspersky researchers believe the likelihood of the next WannaCry happening in 2023 is high.
  • Over 400 million users are protected by Kaspersky technologies and we help 240,000 corporate clients protect what matters most to them.

Kaspersky: WinDealer malware shows extremely sophisticated network abilities

Retrieved on: 
Thursday, June 2, 2022
Internet, Infection, Goal, Advanced persistent threat, IP, Response, Organization, Telecommunication, Solution, Intelligence, APT, EDR, GLOBE, Anomaly, Command, GReAT, SOC, VPN, Control, Risk management, Online shopping, Kaspersky Lab

This groundbreaking development allows the actor to modify network traffic in-transit to insert malicious payloads.

Key Points: 
  • This groundbreaking development allows the actor to modify network traffic in-transit to insert malicious payloads.
  • Following findings by TeamT5, Kaspersky researchers discovered a new distribution method applied by operators to spread the WinDealer malware.
  • If the attacker wins that race, the target machine will then use the attacker-supplied data instead of the normal data.
  • Typically, malware contains a hardcoded Command and Control server from which the malicious operator controls the entire system.

Kaspersky Predicts Advanced Persistent Threat Trends in 2022

Retrieved on: 
Wednesday, November 17, 2021
GReAT, META, Perception, KSB, WFH, Hacks, Running, APT, Slingshot, Attack, Software, FinFisher, Cloud computing, Knowledge, Unified Extensible Firmware Interface, APTS, Mac, IOS, Growth, Intelligence, Weapon, Risk management, Online shopping

Today Kaspersky researchers presented their vision of the future of advanced persistent threats (APTs), outlining how the threat landscape will change in 2022.

Key Points: 
  • Today Kaspersky researchers presented their vision of the future of advanced persistent threats (APTs), outlining how the threat landscape will change in 2022.
  • Therefore, Kaspersky experts believe that vendors of such software will diligently expand in cyberspace and provide their services to new advanced threat actors, until governments begin to regulate its use.
  • Other targeted threat predictions for 2022 include:
    Mobile devices exposed to wide, sophisticated attacks.
  • Over 400 million users are protected by Kaspersky technologies and we help 240,000 corporate clients protect what matters most to them.

FinFisher spyware improves its arsenal with four levels of obfuscation, UEFI infection and more

Retrieved on: 
Tuesday, September 28, 2021
Goal, FinFisher, EDR, Policy, GReAT, Trust, Employment, Solution, Infection, Software, Linux, SAS, TeamViewer, SOC, WinRAR, Computer, Android, VLC media player, VLC, Radar, UEFI, HTTPS, Intelligence, Kaspersky Anti-Virus, Research, Response, Kaspersky Internet Security, GLOBE, Satellite navigation device, Online shopping, Risk management

The findings suggest high emphasis on defense evasion, making FinFisher one of the hardest-to-detect spywares to date.

Key Points: 
  • The findings suggest high emphasis on defense evasion, making FinFisher one of the hardest-to-detect spywares to date.
  • FinFisher, also known as FinSpy or Wingbird, is a surveillance tool that Kaspersky has been tracking since 2011.
  • Its Windows implants were detected and researched several times up to 2018 when FinFisher appeared to have gone under the radar.
  • This method of infection allowed the attackers to install a bootkit without the need to bypass firmware security checks.