You might remember a story that I posted about Symantec’s analysis of recent cyber-attacks on South Korea. Here’s an update for you. Symantec previously identified a particular backdoor (Backdoor.Prioxer) that surfaced during another major attack against South Korea in 2011. A modified version of this backdoor was also discovered during the attacks taking place this year. There are indications that the same individuals are responsible for the 2011 and 2013 versions, pointing towards a possible connection between the two attacks.
Further analysis indicates these threats are the work of only one group. It seems unlikely that an independent hacktivist is behind these attacks. There are implications that someone has either paid or been ordered to perform these attacks, either as a contractor or as an employee of some sort.
Further details can be found here. It’s a very interesting read.
Related
This entry was posted on April 2, 2013 at 7:47 pm and is filed under Commentary with tags Symantec. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Symantec Has Further Analysis On South Korean Cyberattacks
You might remember a story that I posted about Symantec’s analysis of recent cyber-attacks on South Korea. Here’s an update for you. Symantec previously identified a particular backdoor (Backdoor.Prioxer) that surfaced during another major attack against South Korea in 2011. A modified version of this backdoor was also discovered during the attacks taking place this year. There are indications that the same individuals are responsible for the 2011 and 2013 versions, pointing towards a possible connection between the two attacks.
Further analysis indicates these threats are the work of only one group. It seems unlikely that an independent hacktivist is behind these attacks. There are implications that someone has either paid or been ordered to perform these attacks, either as a contractor or as an employee of some sort.
Further details can be found here. It’s a very interesting read.
Share this:
Like this:
Related
This entry was posted on April 2, 2013 at 7:47 pm and is filed under Commentary with tags Symantec. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.