Unit 42 Researchers Discover Multiple Espionage Operations Targeting Southeast Asian Government>
– Lior Rochberger
Unit 42’s analysis of three attack clusters in Southeast Asia highlights a few noteworthy trends.
Firstly, the clusters have been targeting the hospitality industry with various ransomware and backdoors.
This is possibly a way for attackers to siphon money directly from the companies, or to indirectly benefit from the theft of customer information.
Secondly, the attackers have been using phishing emails with malicious attachments to gain initial access to networks.
And finally, the attackers have been leveraging open source and limited commercial tools to gain privileged access in the networks they leverage.
With the use of these tools, the attackers are able to bypass various security measures and exfiltrate data more efficiently.
Overall, Unit 42’s analysis illustrates the need for organizations to remain extra vigilant and ensure that their networks remain secure.
Link: https://unit42.paloaltonetworks.com/analysis-of-three-attack-clusters-in-se-asia/