Explorer

Cyber spy groups moving towards using supply chain attacks: Kaspersky Lab

Mumbai [India], Oct.16 (ANI): They are not just after your data anymore. Kaspersky Lab today reveals that cyber-espionage groups are now attacking financial institutions in Asia Pacific.

From spying, stealing, and leaking state, military, and trade secrets, cybersecurity researchers at Kaspersky Lab discovered that cybercriminals operating in the region now aim for monetary gain as they infect banks in APAC countries.

The global cybersecurity company said active Advanced Persistent Threat (APT) groups have successfully breached financial institutions in Malaysia, South Korea, Indonesia, Philippines, China (Hong Kong), Bangladesh, and Vietnam.

"This year, we have monitored the tectonic shift in APT actors' behavior. These groups who are initially data-hungry are now going beyond traditional cyberespionage. They added money-stealing on their attack menu as they hunt for vulnerable banks in the Asia Pacific (APAC) region which they can infect mostly through the rising epidemic," says Yury Namestnikov, Head of Research Center, Russia at Kaspersky Lab's Global Research and Analysis Team (GReAT).

In 2017, Kaspersky Lab has been able to monitor active APT actors in the region, namely the infamous Lazarus group and Cobaltgoblinother groups that use Carbanak-style attacks.

Lazarus is the cyber gang believed to be behind massive breaches including the Sony Pictures hack in 2014 and the multi-million cyber robbery against the Central Bank of Bangladesh last year. They are known for hacking C&C servers of banks and governments as launchpads for their malicious campaigns.

Carbanak made headlines in 2014 for the USD 1-billion bank heists in Russia, Ukraine, Germany, and China dubbed as "The Great Bank Robbery". The group infiltrated their victims' networks through spear phishing emails or infected Word documents exploiting known vulnerabilities. With remote and covert access to the system, they gained control of the banks' ATMs or websites and collected a significant amount of money.

The degree of sophistication in terms of tools and the skilled manpower of the hackers behind these groups suggest that some of them are state-sponsored actors.

"Actors are switching towards using legitimate software instead of deploying unique malicious programs, which can allows them to perform the attack stealthy. Also they penetrated networks by supply chain attacks: in last three months there were four huge incidents of these similar pattern. In terms of monetization, it could be attacks against ATM infrastructure, SWIFT servers or databases with transactions and debit/credit cards information. They are undoubtedly investing time, money, and effort so they can have good Return on Investment (ROI). So far, we can assume that cybercriminals are earning good ROI when attacking financial institutions in the region," adds Namestnikov.

The exact monetary losses from financial institutions attacks in APAC are unconfirmed as of this time but Kaspersky Lab researchers report having been able to foil breaches before financial firms could lose their money.

In order to protect enterprises from sophisticated financial threats, the global cybersecurity company suggests the use of a highly sophisticated solution that enables businesses to detect targeted attacks and other malicious actions through careful monitoring of network activity, web, and email like the Kaspersky Anti Targeted Attack Platform.

Kaspersky Lab also highlights the importance of threat intelligence to keep financial institutions knowledgeable on the latest trends of threats against banks. The global cybersecurity company has a portfolio of Threat Intelligence services designed to mitigate massive attacks by providing enterprises with insights on the latest, constantly emerging threats currently targeting businesses around the world.

Kaspersky Lab is a global cybersecurity company celebrating its 20 year anniversary in 2017. Kaspersky Lab's deep threat intelligence and security expertise is constantly transforming into security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe.

The company's comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky Lab technologies and we help 270,000 corporate clients protect what matters most to them. (ANI)


This story has not been edited. It has been published as provided by ANI

View More
Advertisement
Advertisement
25°C
New Delhi
Rain: 100mm
Humidity: 97%
Wind: WNW 47km/h
See Today's Weather
powered by
Accu Weather
Advertisement

Top Headline

PM Modi Calls Congress A 'Bully' After Lawyers Write To CJI. Here's What He Said
PM Modi Calls Congress A 'Bully' After Lawyers Write To CJI. Here's What He Said
Actor Govinda Joins Eknath Shinde's Shiv Sena, Likely To Contest From Mumbai North West
Actor Govinda Joins Eknath Shinde's Shiv Sena, Likely To Contest From Mumbai North West
'Any External Imputation Unacceptable': India On US Diplomat Summon Over Kejriwal's Arrest
'Any External Imputation Unacceptable': India On US Diplomat Summon Over Kejriwal's Arrest
Kejriwal To Stay Delhi CM From Jail As High Court Finds 'No Legal Bar,' Ball In LG's Court Now
Kejriwal To Stay Delhi CM From Jail As High Court Finds 'No Legal Bar,' Ball In LG's Court Now
Advertisement
for smartphones
and tablets

Videos

Bihar Lok Sabha Polls 2024: ABP Exclusive With Papu Yadav, MP No Longer Contesting From PurniaVarun Gandhi Pens Emotional Letter To Pilibhit After Being Denied, Says 'Mai Aapka Hu Aur Rahunga'Delhi Excise Policy Case: With CM Arvind Kejriwal's Arrest, Who Will Run The State | Watch ReportLok Sabha Elections 2024: 'BJP Just Wants To Break The Aam Aadmi Party' says Saurabh Bhardwaj

Photogallery

Embed widget