Blog

New tools, open source threats and hacktivism: Kaspersky reveals key trends for the current APT landscape

In the second quarter of 2024, Kaspersky’s Global Research and Analysis Team (GReAT) observed notable changes in the activities of cyber threat actors. Some maintained their usual patterns, while others significantly updated their tools and broadened their activities.

Kaspersky’s telemetry data revealed a surge in sophisticated cyberespionage campaigns, particularly targeting government, military, telecommunications, and judicial sectors.

Here are some key highlights from the latest Advanced Persistent Threats (APT) trend report

One key development was the exploitation of open-source threats, including the backdooring of XZ, a compression utility used in Linux distributions. Attackers employed social engineering to gain persistent access to the development environment, concealing their activities through anti-replay features and custom steganography. These tactics kept the threat undetected for years.

Hacktivism also played a significant role, with groups like Homeland Justice launching damaging attacks. In Albania, they exfiltrated over 100TB of data and wiped database servers, severely disrupting the targeted organizations.

Additionally, attackers have updated their toolsets. The GOFFEE group transitioned from older tools like Owawa and VisualTaskel to new methods, including a loader disguised as a legitimate document. Their campaigns continue to evolve, enhancing their infiltration tactics.

APT campaigns impacted all regions globally, highlighting the widespread reach of these threats across Europe, the Americas, Asia, the Middle East, and Africa.

“APTs continuously evolve, adapting their tactics and expanding their reach, making them a relentless force in the cyber landscape. To combat these ever-changing threats, it’s crucial that the cyber-community unites, sharing information and collaborating across borders.

Only through collective vigilance and open communication can we stay one step ahead and safeguard our digital world,” comments David Emm, Principal Security Researcher at Kaspersky’s GReAT.

More exclusive research on the most complex threats will be unveiled at upcoming Security Analyst Summit (SAS) set to take place for the sixteenth time from October 22-25, 2024, in Bali.
To learn more about APT threat landscape in Q2 2024, visit Securelist.com.

Kaspersky’s GReAT actively share their latest findings and exclusive insights through the Kaspersky Threat Intelligence Portal (TIP).

Tech and Teen

Recent Posts

Meghna Bank Announced the Inauguration of Centre for Excellence

Recently, Meghna Bank PLC. proudly announced the inauguration of Centre for Excellence - a dedicated…

17 hours ago

Robi Holds 29th Annual General Meeting

Mobile network operator Robi Axiata PLC. held its 29th Annual General Meeting (AGM) today, Monday,…

17 hours ago

Grand Launch of ELF Lubricants and Chery’s Premium SUVs in Bangladesh

Asian Petroleum Limited, the official distributor of ELF Lubricants and Asian Motorspex Limited, the official…

17 hours ago

BYD starts delivering SEALION 6 in Bangladesh

Offering a seamless driving experience, exceptional balance of performance, fuel efficiency, and intelligent features, BYD…

17 hours ago

NASA Congratulates Bangladesh on Artemis Accords, Praises Young Innovators

The Government of Bangladesh has recently signed the Artemis Accords—an important international agreement on space…

2 days ago

realme launches C75x: The ultra-waterproof smartphone under Tk 18,000 in Bangladesh

Youth-favourite consumer technology brand realme today launched its latest smartphone realme C75x in Bangladesh. The…

2 days ago