TA-505 Cybercrime on System Integrator Companies

Introduction During a normal monitoring activity, one of the detection tools hits a suspicious email coming from the validtree.com domain. The domain was protected by a Panama company to hide its real registrant and this condition rang a warning bell on the suspected email so that it required a manual analysis in order to investigate […]

Read more "TA-505 Cybercrime on System Integrator Companies"

Is Lazarus/APT38 Targeting Critical Infrastructures ?

Introduction During the past few days a cyber attack hit Kudankulam Nuclear Power Plant: the largest nuclear power plant located in the Indian state of Tamil Nadu. The news was announced on Monday October 28 by the Indian strategic infrastructure. In a press release on arstechnica, NPCIL Associate Director A. K. Nema stated, “Identification of […]

Read more "Is Lazarus/APT38 Targeting Critical Infrastructures ?"