×

Register to Access Intelligence Summary

First Name
Last Name
Job Title
Company
Country
State
Thank you!
Error - something went wrong!
   

Weekly Intelligence Summary 15 May 2020

May 15, 2020

In the spotlight this week: The apparent resurgence of advanced persistent threat (APT) group “Naikon” has established that “out of sight” does not mean “inactive”; despite scant reporting on the group in recent years, Naikon has apparently been flying under the radar since 2015. The group’s recent tactics, techniques, and procedures (TTPs) deviate little from those observed five years ago, such as spearphishing emails, purportedly from government-related bodies and containing context-specific lures, to deliver malware in the Asia-Pacific (APAC) region. The “Aria-body” backdoor allowed Naikon to gain information on victims and abuse their networks to launch future attacks, and exploiting legitimate infrastructure likely helped the group evade detection for a prolonged period of time. Threat actors seldom cease activity when there is much to be gained from their victims. Educating users about common pitfalls leading to malware installation is a good defense against seemingly dormant threats.

Previous Report
Weekly Intelligence Summary 22 May 2020
Weekly Intelligence Summary 22 May 2020

A threat group by the name of ShinyHunters has flooded dark web marketplaces and criminal forums with leake...

Next Report
Weekly Intelligence Summary 08 May 2020
Weekly Intelligence Summary 08 May 2020

Researchers have reported on active cyber-threat campaigns exploiting a cross-site scripting (XSS) vulnerab...

×

Want these
Threat Intelligence reports sent straight to your inbox?

Subscribe below!

First Name
Last Name
Company
Country
State- optional
Job Title
Thank you!
Error - something went wrong!