Brian Bartholomew – WindowsTechs.com

Adobe Patches Flash Zero Day Exploited by Black Oasis APT

Posted on October 16, 2017 by Michael Mimoso

Adobe today released an out-of-band Flash Player update addressing a zero-day vulnerability being exploited by a little-known Middle Eastern APT group called Black Oasis. Continue reading Adobe Patches Flash Zero Day Exploited by Black Oasis APT→

Updates to Sofacy, Turla Highlight 2017 Q2 APT Activity

Posted on August 8, 2017 by Chris Brook

Attackers behind APT campaigns have kept busy in Q2 2017, adding new ways to bypass detection, crafting new payloads to drop, and identifying new zero days and backdoors to help them infect users and maintain persistence on machines.

Continue reading Updates to Sofacy, Turla Highlight 2017 Q2 APT Activity→

The Ethics and Morality Behind APT Reports

Posted on October 7, 2016 by Michael Mimoso

Investigating state-sponsored espionage and counterterrorism is one thing. Writing public reports about these activities is another. Continue reading The Ethics and Morality Behind APT Reports→

Juan Andres Guerrero-Saade and Brian Bartholomew on APT False Flags and Attribution

Posted on October 6, 2016 by Chris Brook

Mike Mimoso talks to Kaspersky Lab Global Research and Analysis Team researchers Juan Andres Guerrero-Saade and Brian Bartholomew about a paper released at Virus Bulletin on deception tactics and false flags flown by APT groups to frustrate analysis.

Continue reading Juan Andres Guerrero-Saade and Brian Bartholomew on APT False Flags and Attribution→

APT Attackers Flying More False Flags Than Ever

Posted on March 17, 2016 by Michael Mimoso

Investigators continue to focus on attack attribution, but Kaspersky researchers speaking at CanSecWest 2016 caution that attackers are manipulating data used to tie attacks to perpetrators. Continue reading APT Attackers Flying More False Flags Than Ever→