The notorious Chinese state-sponsored hacking group APT10, which is believed to act for the country's Ministry of State Security, is the most likely culprit behind a cyber campaign targeting U.S. utility companies in July. The disclosure on August 1 was made by researchers at Proofpoint, who warned that "persistent targeting of any entity that provides critical infrastructure should be considered an acute risk—the profile of this campaign is indicative of specific risk to U.S.-based entities in the utilities sector."
The spear-phishing campaign targeted company employees with emails purporting to be from the National Council of Examiners for Engineering and Surveying (NCEES), emails that claimed to be delivering professional examination results but which were actually delivering "malicious" Microsoft Word attachments. Threat researchers at Proofpoint broke the news and dubbed the command and control malware "LookBack."
No comments:
Post a Comment