The APT group of 12 pirates, thought to have links with the Army liberation of the Chinese people launched several new attacks after a few months of inactivity.
The group has received wide media coverage in January after a large breach of security The New York Times and several other top companies that shed some light on their methods and operating procedures.
APT 12 seem to have made a reappearance in May using new versions of Backdoor.APT.Aumlib and Backdoor.APT.lxeshe, as well as infrastructure command and control previously used to target and Taiwanese companies a group of finance and international economic policy.
hackers have reportedly made some modifications to network communication protocols in their malicious programs to ensure that the generated traffic patterns are different from those in older versions of the programs. It appears that the group hopes that these changes will enable them to avoid discovery by intrusion detection systems.
The evolution of these types of malicious software is a milestone like this before Aumlib has not changed since May 2011, at least while lxeshe has not changed since at least December 2011 . It is possible that there are currently ongoing attacks using these updated versions of the malware. Ned Moran, senior malware researcher at FireEye, recommends that companies "ensure that their detection tools are also able to identify these new variants."
If you are worried about the security of your network or personal computer, then using a VPN service can help protect your private data from prying eyes - allowing you to surf anonymously and encrypt your Internet traffic for improved security.
0 Komentar