Connect with us

Hi, what are you looking for?

HEADLINES

With cyber security threats targeting SEAsia, cyber espionage needs to be addressed – FireEye

Cyber security platform provider FireEye claimed that new cyber security threats have been targeting Southeast Asia, including the Philippines, aimed at identifying and stealing information about the operations of governments, businesses and media for both political and economic advantage. As such, cyber espionage is something the Philippines needs to address.

Cyber security platform provider FireEye claimed that new cyber security threats have been targeting Southeast Asia, including the Philippines, aimed at identifying and stealing information about the operations of governments, businesses and media for both political and economic advantage. As such, cyber espionage is something the Philippines needs to address.

Travis Reese, president of FireEye, identified these hacking groups as APT32 and Conference Crew which were sponsored by the government of Vietnam and China, respectively. The operations of these cyber security threat groups, according to Reese, show that “state-sponsored cyber espionage affects the government, as well as business organizations in the Philippines and SEA, where they face persistent threat factors.”

The Vietnamese-sponsored APT32, according to FireEye, targets private sector interests, as well as interests in political influence and foreign governments in SEA using phishing emails, and gaining access to VPN, emails, files, and Web browsing data using malware such as WindShield, Komprogo, Soundbite and Phoreal, in conjunction with commercially-available tools to conduct activities aligned with Vietnamese state interests. The group started its cyber espionage activities in 2013. In 2016, APT32 targeted technology and infrastructure sectors in the Philippines using the WindShield malware. The group also targeted Philippine government agencies. The Conference Crew, on the other hand, is a Chinese hacker group observed to be carrying out activities against critical public and private institutions in the Philippines, Indonesia, India, Turkey, Vietnam, and China, including Hong Kong and Macau.

The Conference Crew uses email lures containing a link that launches malware payload when opened, to serve as invitations to conferences and is targeting industries including banking and financial services, defense, telecommunications, government, consulting and media. Government targets are predominantly involved in national security and diplomacy.

Advertisement. Scroll to continue reading.

These hacking groups remain very active and have proven to be very capable adversaries, according to Bryce Boland, Asia-Pacific chief technology officer at FireEye.

“Philippine organizations face some of the most intense and daunting cyber security threats we see in Asia, and we don’t expect them to recede in the near future. The current geopolitical climate in the region has generated significant uncertainty, and governments are turning to cyber espionage operations to glean more insights in order to alleviate this uncertainty,” Boland ended.

Advertisement
Advertisement
Advertisement

Like Us On Facebook

You May Also Like

HEADLINES

The campaigns show attackers are capitalizing on people’s increasing familiarity with completing multiple authentication steps online – a trend HP calls ‘click tolerance’. 

White Papers

IBM X-Force observed an 84% increase in emails delivering infostealers in 2024 compared to the prior year, a method threat actors relied heavily on...

HEADLINES

Kaspersky participated in 95 independent tests and reviews, with its products being awarded first place 91 times and 92 TOP3 finishes, achieving the highest results among...

HEADLINES

‘Wangiri’ originated in Japan in the early 2000’s. The term describes the modus. ‘Wan’ is a play on the word ‘one’ while ‘giri’ means...

HEADLINES

Smart and its value brand TNT do not send text messages with clickable links. If you receive one—even if it looks like it’s from...

White Papers

n the Philippines, industry players are taking a more proactive approach to building a security framework for digital resilience.

HEADLINES

This marks the company’s first participation in the region’s premier tech event, where it will showcase its groundbreaking cybersecurity solutions to industry leaders, innovators,...

HEADLINES

A report found that the primary way attackers gained initial access to networks (56% of all cases across MDR and IR) was by exploiting...

Advertisement