Juan Andres Guerrero-Saade – WindowsTechs.com

Costin Raiu and Juan Andres Guerrero-Saade on APT Fourth-Party Collection

Posted on October 4, 2017 by Chris Brook

Costin Raiu and Juan Andres Guerrero-Saade talk to Mike Mimoso live from Virus Bulletin in Madrid about APTs leveraging one anothers’ attacks and compromised machines as their own. Continue reading Costin Raiu and Juan Andres Guerrero-Saade on APT Fourth-Party Collection→

Updates to Sofacy, Turla Highlight 2017 Q2 APT Activity

Posted on August 8, 2017 by Chris Brook

Attackers behind APT campaigns have kept busy in Q2 2017, adding new ways to bypass detection, crafting new payloads to drop, and identifying new zero days and backdoors to help them infect users and maintain persistence on machines.

Continue reading Updates to Sofacy, Turla Highlight 2017 Q2 APT Activity→

Next NSA Exploit Payload Could be Much Worse Than WannaCry

Posted on May 17, 2017 by Michael Mimoso

Researchers urge Windows admins to apply MS17-010 before the next attack using the EternalBlue NSA exploit deploys a worse payload than WannaCry ransomware. Continue reading Next NSA Exploit Payload Could be Much Worse Than WannaCry→

Russian-Speaking Turla Joins APT Elite

Posted on April 3, 2017 by Michael Mimoso

Researchers may have found a link between Moonlight Maze of the late ’90s and the Turla APT, which would elevate Turla to the ranks of the Equation Group as an elite nation-state attacker. Continue reading Russian-Speaking Turla Joins APT Elite→

Destructive StoneDrill Wiper Malware On The Loose

Posted on March 6, 2017 by Michael Mimoso

Kaspersky Lab released details about new wiper malware called StoneDrill that bears similarities to Shamoon2 and an APT outfit known as NewsBeef. Continue reading Destructive StoneDrill Wiper Malware On The Loose→

Destructive StoneDrill Wiper Malware On The Loose

Posted on March 6, 2017 by Michael Mimoso

Juan Andres Guerrero-Saade and Brian Bartholomew on APT False Flags and Attribution

Posted on October 6, 2016 by Chris Brook

Mike Mimoso talks to Kaspersky Lab Global Research and Analysis Team researchers Juan Andres Guerrero-Saade and Brian Bartholomew about a paper released at Virus Bulletin on deception tactics and false flags flown by APT groups to frustrate analysis.

Continue reading Juan Andres Guerrero-Saade and Brian Bartholomew on APT False Flags and Attribution→

APT Attackers Flying More False Flags Than Ever

Posted on March 17, 2016 by Michael Mimoso

Investigators continue to focus on attack attribution, but Kaspersky researchers speaking at CanSecWest 2016 caution that attackers are manipulating data used to tie attacks to perpetrators. Continue reading APT Attackers Flying More False Flags Than Ever→