Kaspersky researchers first became aware of this campaign when they were called in to assist with incident response, and they discovered that the organisation had fallen victim to a custom backdoor (a type of malware that allows complete remote control over the device).
Dubbed ThreatNeedle, this backdoor moves laterally through infected networks and extracts confidential information. So far, organisations in more than a dozen countries have been affected.
Advertisement
Initial infection occurs through spear-phishing; targets receive emails that contain either a malicious Word attachment or a link to one hosted on company servers. Oftentimes, the emails claimed to have urgent updates related to the pandemic and came, supposedly, from a respected medical center.
Sunburst – Kaspersky identifie le chaînon manquant : les experts ont trouvé des liens entre l attaque de SolarWinds et le backdoor Kazuar
industries.ma - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from industries.ma Daily Mail and Mail on Sunday newspapers.
Kaspersky revela dos incidentes de APT relacionados con la investigación de la vacuna
todoenunclick.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from todoenunclick.com Daily Mail and Mail on Sunday newspapers.
Kaspersky reveals two APT incidents related to vaccine research ANI | Updated: Dec 30, 2020 17:43 IST
New Delhi [India] December 30 (ANI/Bloomingdale): In the autumn of 2020, Kaspersky researchers identified two APT incidents that targeted entities related to COVID-19 research -a Ministry of Health body and a pharmaceutical company. Kaspersky experts assessed with high confidence that the activities can be attributed to the infamous Lazarus group.
As the pandemic and restrictive measures across the world continue, many parties involved are trying to speed up vaccine development by any means available. While most of the work is well-intentioned, there is another side to this coin as some threat actors are trying to capitalize on this for their own gain. As they continue to track the Lazarus group s ongoing campaign targeting various industries, Kaspersky experts have discovered that the actor went after COVID-19-related entities just a couple