Renewed interest in targeted attacks

Date:28.02.13 Author:Jon Røgeberg

Targeted attacks, specifically attacks attributed to “advanced persistent threats” has gained a renewed interest the last month (just when things were about to calm down). First New York Times released an article about how Chinese attackers persistently attacked the Times for a period of four months.

Then, less than a month after the Times article, Mandiant releases an extensive report on the advance persistent threat actor they have identified as “APT1”. Attributing hundreds of attacks to a unit in the People’s Liberation Army (Unit 61398).

Both these headline stories have resulted in a renewed interest in targeted attacks.

Google Trends: Web Search Interest: advanced persistent threat


If you haven’t read the article or the report yet, you should. It is an interesting read.

 
New York Times Article:

http://www.nytimes.com/2013/01/31/technology/chinese-hackers-infiltrate-new-york-times-computers.html


Mandiant report on APT1:

https://www.mandiant.com/blog/threat-actors-mandiant-apt1-report-spear-phishing-lure/
Note: You should not open any reports, not downloaded directly from Mandiant. Recently we have seen a fake version of the report being used as lure in spear phishing campaigns.

Send your comments on this article to blogcomment@mnemonic.no


Jon Røgeberg Head of TI +47 402 42 309
Jon Røgeberg
 

Interested in reading more? Please read our annual report (norwegian).