攻撃組織: APT37 / Reaper / Group123 / ScarCruft / Ricochet Chollima / Red Eyes / Sun Team
【ブログ】 ◆APT37 (Reaper): The Overlooked North Korean Actor (FireEye, 2018/02/20) https://www.fireeye.com/blog/threat-research/2018/02/apt37-overlooked-north-korean-actor.html 【関連まとめ記事】 ◆APT37 (まとめ) http://malware-log.hatenab…
【ニュース】 ◆Flashゼロデイ攻撃、北朝鮮攻撃グループ「TEMP.Reaper」が関与 - FireEye分析 (Security NEXT, 2018/02/06) http://www.security-next.com/089920 【関連まとめ記事】 ◆APT37 (まとめ) http://malware-log.hatenablog.com/entry/APT37
【ニュース】 ◆Cisco and FireEye Pointing Finger at North Korea Hacking Group For Adobe Flash 0-Day In The Wild (Security Affairs, 2018/02/05) http://securityaffairs.co/wordpress/68718/hacking/north-korea-adobe-flash-0day.html 【関連まとめ…
【ブログ】 ◆Attacks Leveraging Adobe Zero-Day (CVE-2018-4878) – Threat Attribution, Attack Scenario and Recommendations (FireEye, 2018/02/02) https://www.fireeye.com/blog/threat-research/2018/02/attacks-leveraging-adobe-zero-day.html 【関…
【ニュース】 ◆North Korean hackers belonging to the North Korea Group 123 have conducted at least six different massive malware campaigns during 2017. (Security Affairs, 2018/01/18) http://securityaffairs.co/wordpress/67895/hacking/north-k…
出典: https://blog.talosintelligence.com/2018/01/korea-in-crosshairs.html 【ブログ】 ◆Korea In The Crosshairs (Talos, 2018/01/16) http://blog.talosintelligence.com/2018/01/korea-in-crosshairs.html 【関連まとめ記事】 ◆APT37 (まとめ) http://…
【ブログ】 ◆FreeMilk: A Highly Targeted Spear Phishing Campaign (paloalto, 2017/10/05) https://researchcenter.paloaltonetworks.com/2017/10/unit42-freemilk-highly-targeted-spear-phishing-campaign/ 【関連まとめ記事】 ◆APT37 (まとめ) http://m…
【別名情報】 名称 別名 備考 Lazarus Hidden Cobra, Dark Seoul, Silent Chollima, Hastati, Bureau 121, Whois Hacking Team, Unit 121,NewRomanic Cyber Army Team Bluenoroff Lazarusの分派 Andariel Lazarusの分派 Kimsuki APT38 TEMP.Hermit OnionDog …
【ニュース】 ◆Adobe Flash Player 22.0.0.192 release fixes the Flash Player zero-day vulnerability (CVE-2016-4171) exploited by the APT group dubbed ScarCruft. (Security Affairs, 2016/06/19) http://securityaffairs.co/wordpress/48531/cyber-c…
【ブログ】 ◆Operation Daybreak (SECURELIST, 2016/06/17) Flash zero-day exploit deployed by the ScarCruft APT Group https://securelist.com/blog/research/75100/operation-daybreak/ 【関連まとめ記事】 ◆APT37 (まとめ) http://malware-log.hatenab…
【ニュース】 ◆Flashゼロデイ攻撃、APTグループ「ScarCruft」関与か - EMETで回避可能 (Security NEXT, 2016/06/15) http://www.security-next.com/070993 【関連まとめ記事】 ◆APT37 (まとめ) http://malware-log.hatenablog.com/entry/APT37
【ニュース】 ◆APT Group Uses Flash Zero-Day to Attack High-Profile Targets (SECURITYWEEK, 2016/06/15) http://www.securityweek.com/apt-group-uses-flash-zero-day-attack-high-profile-targets 【関連まとめ記事】 ◆APT37 (まとめ) http://malware-l…
【公開情報】 ◆Fear The Reaper - North Korean Group APT37 https://exchange.xforce.ibmcloud.com/collection/Fear-The-Reaper-North-Korean-Group-APT37-dc96e8bdff7573efb87d43d7584c1fbc 【関連まとめ記事】 ◆APT37 (まとめ) http://malware-log.hatena…
【ブログ】 ◆CVE-2016-4171 – Adobe Flash Zero-day used in targeted attacks (SecureList, 2016/06/14) https://securelist.com/cve-2016-4171-adobe-flash-zero-day-used-in-targeted-attacks/75082/ 【関連まとめ記事】 ◆APT37 (まとめ) http://malware-…