Sep 29, 2018

APT report for 2018-09-28

TRANSNATIONAL / UNKNOWN

  1. Magecart campaign remains active

CHINA

Nothing to report

INDIA

Nothing to report

NORTH KOREA

Nothing to report

PAKISTAN

Nothing to report

VIETNAM

Nothing to report

IRAN

Nothing to report

LEBANON

Nothing to report

PALESTINE

Nothing to report

SAUDI ARABIA

Nothing to report

UNITED ARAB EMIRATES

Nothing to report

RUSSIA

  1. Russian Sednit APT used the first UEFI rootkit of ever in attacks in the wild
  2. Fancy Bear’s Lojax is First UEFI Rootkit in the Wild
  3. Fancy Bear Attacks Governments Using LoJax UEFI Rootkit
  4. Fancy Bear still Putin out new modules for VPNFilter malware
  5. Google first confirmed the existence of the Dragonfly program for returning to China

UKRAINE

Nothing to report
at
Labels: