Trend Micro Research reveals Indian Defense Companies the current target of Cybercriminals

VARINDIA- INDIA'S FRONTLINE IT MAGAZINE

Trend Micro Researchers were alerted to the discovery of a campaign of targeted attacks that have successfully compromised defense industry companies in India, USA, Japan, Israel. We have been able to identify eight victims of this attack and are in the process of notifying them. We have analyzed a sample that connects to the same command-and-control (C&C) server in this targeted attack. We also analyzed the second stage malware used by the attackers that was built specifically for one of the targeted companies as well as a remote access Trojan (RAT) used by the attackers.

The attackers sent out emails with a malicious PDF attachment, detected by Trend Micro as TROJ_PIDIEF.EED which exploits vulnerability in specific versions of Adobe Flash and Reader (CVE_2011-0611) to drop malicious files on the target's computer. This malicious payload, detected by Trend Micro as BKDR_ZAPCHAST.QZ, connects to a C&C server and communicates some pieces of information about itself and awaits further commands.

The second stage of the attacks involves two components. The attackers issue commands that instruct the compromised computer to report back networking information and file names within specified directories. Certain targets are instructed to download custom DLLS, detected by Trend Micro as BKDR_HUPIG.B, that contain specific functionality related to the compromised entity.

Amit Nath, Country Manager India and SAARC, Trend Micro said, "In total, the attackers compromised 32 computers; however, there were multiple compromises at several locations. This network has been active since July 2011 and is continuing to send out malicious documents in an attempt to compromise additional targets", he further added "While this network has managed to compromise a relatively small number of victims, there is a high concentration of defense industry companies among the victims. Moreover, the fact that specific malware components are created for specific victims indicates a level of intentionality among the attackers. Trend Micro is continuously monitoring this ongoing threat and will post updates on this blog for any noteworthy developments."


For More Details See

www.varindia.com

Comments

Post a Comment

Popular posts from this blog

N Chandrasekaran appointed chairman of Tata Sons

Image
The board of directors of Tata Sons, at its meeting has unanimously appointed N Chandrasekaran as executive chairman, Tata Sons. N Chandrasekaran shall take charge from February 21, 2017. The board of Tata Sons said, “Chandrasekaran has demonstrated exemplary leadership as the chief executive officer and managing director, Tata Consultancy Services. We believe he will now inspire the entire Tata group to realise its potential acting as leaders in their respective businesses, always in keeping with our value system and ethics and adhering with the practices of the Tata group which have stood it in good stead.” Chandrasekaran was the chief executive officer and managing director of Tata Consultancy Services since 2009. A Tata lifer, he had joined the company in 1987 and was appointed as a director on the board of Tata Sons on October 25, 2016.
Read more

DoT Secretary hints at making Draft NTP 2018 available in public domain soon

Image
“A draft National Telecom Policy 2018 that is liberal and non-prescriptive in its licensing approach in Machine to Machine (M2M) communication is being given final touches. The policy should be in the public domain in the next two to three weeks for discussion and responses from stakeholders,” said Aruna Sundararajan, Secretary, Department of Telecom, Ministry of Communications. Aruna Sundararajan said, “M2M is the next big opportunity for India in terms of its impact and the quantum change that it will bring about in the quality of services and delivery. The favourable impact of M2M on job creation had already set in as seen by the arrival of the first set of start-ups in the areas such as agriculture, smart cities, healthcare and water management.” She stressed that NTP 2018 would be transformative in harnessing the full benefits of M2M communications. She further said that in the M2M framework the focus would be on low-cost manufacturing, where exciting innovatio
Read more

Visa buys NFT based CryptoPunk and paid $150,000 in Etherium

Image
Visa buys NFT based CryptoPunk and paid $150,000 in Etherium:  Leader in the digital payments   Visa   has purchased a digital CryptoPunk for $150,000, marking the company's first ever   NFT   purchase. The deal is clearly shows that, Visa is stepping into the world of NFTs with its purchase of   CryptoPunk 7610 .   Going forward, NFTs and Visa to align and integrate them in new brand strategy to gain a sizable market share. However, NFTs have often been compared to physical collectible items like rare trading cards and works of art.   The CryptoPunk 7610, which feBlatures a female punk with a mohawk and large green eyes. "We envision there could be a future where your crypto address becomes as important as your mailing address," Visa's Head of Crypto said.   An NFT - which stands for non-fungible token - is a unique digital asset designed to represent ownership of a virtual item. Unlike bitcoin and other cryptocurrencies, NFTs can’t be exchanged like-for-like with an
Read more