ESET research into POLONIUM’s arsenal – Week in security with Tony Anscombe

Cyber Security

More than a dozen organizations operating in various verticals were attacked by the threat actor

This week, ESET researchers published their analysis of previously undocumented backdoors and cyberespionage tools that the POLONIUM APT group has deployed against targets in Israel. The group has used at least seven different custom backdoors in the past year, and ESET has named five previously undocumented backdoors with the suffix “-Creep.”

More than a dozen organizations operating in various verticals – including engineering, information technology, law, communications, media, insurance, and social services – were attacked by the threat actor. POLONIUM’s custom tools can take screenshots, log keystrokes, spy via the webcam, exfiltrate files and perform other covert actions, all the while misusing popular cloud services such as Dropbox, OneDrive, and Mega for command and control communication.

Watch the video to learn more.

Products You May Like

Articles You May Like

61% of Hackers Use New Exploit Code Within 48 Hours of Attack
Silver Fox APT Uses Winos 4.0 Malware in Cyber Attacks Against Taiwanese Organizations
99% of Organizations Report API-Related Security Issues
Amnesty Finds Cellebrite’s Zero-Day Used to Unlock Serbian Activist’s Android Phone
Patch or perish: How organizations can master vulnerability management

Leave a Reply

Your email address will not be published. Required fields are marked *