Threat actors get more creative in their attacks

No Comments
Insider threat

The latest quarterly threat intelligence report from Kaspersky shows that many actors behind advanced persistent threats (APTs) have continued to diversify their toolsets, at times resorting to extremely tailored and persistent tools.

At the same time though others have reached their goals by the employment of well-known, time-tested attack methods.

Among new techniques is an attack infecting the UEFI (Unified Extensible Firmware Interface) making the malware planted on the device exceptionally persistent and extremely hard to remove. Other actors have made use of stenography including a new method abusing the Authenticode-signed Windows Defender binary.

In many cases toolsets have been updated in order to make them more flexible and less prone to detection. Various multi-stage frameworks, such as the one developed by the MuddyWater APT group, continue to appear in the wild.

"While some threat actors remain consistent over time and simply look to use hot topics such as COVID-19 to entice victims to download malicious attachments, other groups reinvent themselves and their toolsets," says Ariel Jungheit, senior security researcher on the Global Research and Analysis Team at Kaspersky. "The widening scope of platforms attacked, continuous work on new infection chains and the use of legitimate services as part of their attack infrastructure, is something we have witnessed over the past quarter. Overall, what this means for cybersecurity specialists is this: defenders need to invest resources in hunting malicious activity in new, possibly legitimate environments that were scrutinized less in the past. That includes malware that is written in lesser-known programming languages, as well as through legitimate cloud services. Tracking actors' activities and TTPs allows us to follow as they adapt new techniques and tools, and thereby prepare ourselves to react to new attacks in time."

The full report is available from the Kaspersky Securelist blog.

Image Credit: LeoWolfert/Shutterstock

No Comments

Comments are closed.

Got News? Contact Us

Recent Headlines

Save $24! Get 'The Code of Honor: Embracing Ethics in Cybersecurity' for FREE

Log files: What are they, why do they matter and how to protect them?

Meta reveals more details of WhatsApp and Messenger's interoperability with third-party messaging services that's coming to Europe soon

Microsoft builds on past Windows 11 taskbar improvements with enhanced app pinning

Ubuntu Linux 24.10 codenamed ‘Oracular Oriole’ takes flight with mystical inspiration

KDE Slimbook Plasma VI brings AMD Ryzen power and AI to Linux laptop with 96GB RAM and 83wh battery

Is your network future-proofed for the age of AI?

Most Commented Stories

Forget Windows 11, the stunning Windows 10 2024 Edition is the operating system you want

34 Comments

10 shocking reasons Windows 10 outshines Windows 11

22 Comments

Rectify11 update arrives to fix Windows 11 -- download it now

18 Comments

Say goodbye to Microsoft Windows 11 and hello to Nitrux Linux 3.6.1

14 Comments

Microsoft is testing a change to the Windows 11 Start menu that you might actually like

14 Comments

Forget TeamViewer, RustDesk is the open-source alternative you've been looking for

13 Comments

Forget Microsoft Windows 11, the Chinese-made deepin Linux 23 is the operating system you really want

12 Comments

Microsoft is bringing ads to the Windows 10 Start menu, just like in Windows 11

11 Comments

© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.