One Article Review
| Source |  TrendLabs Security |
|---|---|
| Identifiant | 389605 |
| Date de publication | 2017-07-27 11:30:10 (vue: 2017-07-27 11:30:10) |
| Titre | ChessMaster Makes its Move: A Look into the Campaign\'s Cyberespionage Arsenal |
| Texte | From gathering intelligence, using the right social engineering lures, and exploiting vulnerabilities to laterally moving within the network, targeted attacks have multifarious tools at their disposal. And like in a game of chess, they are the set pieces that make up their modus operandi. Take for instance the self-named ChessMaster, a campaign targeting Japanese academe, technology enterprises, media outfits, managed service providers, and government agencies. It employs various poisoned pawns: malware-laden spear-phishing emails with decoy documents purporting to be legitimate. And beyond ChessMaster's endgame and pawns, we also found red flags that allude to its links to APT 10, a.k.a. menuPass, POTASSIUM, Stone Panda, Red Apollo, and CVNX. ChessMaster's name is from pieces of chess/checkers/draughts we found in the resource section of the main backdoor they use against their targets: ChChes, which Trend Micro detects as BKDR_CHCHES. Post from: Trendlabs Security Intelligence Blog - by Trend Micro ChessMaster Makes its Move: A Look into the Campaign's Cyberespionage Arsenal |
| Envoyé | Oui |
| Condensat | academe against agencies allude also apollo apt are arsenal attacks backdoor beyond bkdr blog campaign chches chess chess/checkers/draughts chessmaster cvnx cyberespionage decoy detects disposal documents emails employs endgame engineering enterprises exploiting flags found from from: game gathering government have instance intelligence its japanese laden laterally legitimate like links look lures main make makes malware managed media menupass micro modus move: moving multifarious name named network operandi outfits panda pawns pawns: phishing pieces poisoned post potassium providers purporting red resource right section security self service set social spear stone take targeted targeting targets: technology tools trend trendlabs use using various vulnerabilities which within |
| Tags | |
| Stories | APT 10 |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.