The event will kick start with a fireside chat between Brian Bartholomew, principal security researcher in Kaspersky’s GReAT, and John Hultquist, vice-president, Threat Intelligence at FireEye who will discuss the notable cyber-incidents that have taken place in 2021.
Seongsu Park, Kaspersky’s GReAT senior security researcher, will explore the ThreatNeedle malware cluster developed by Lazarus group and associated with attacks targeting the defense industry and security researchers. During the talk, Seongsu will share his insights into the sophisticated multi-stage infection schemes used by ThreatNeedle alongside the targets, post-exploitation processes and infrastructures.
His session will be followed by Suguru Ishimaru, Kaspersky’s GReAT security researcher, alongside representatives of ITOCHU Corporation, TeamT5 and Macnica Networks. They will present their results of tracking down the activity of the A41APT campaign linked to the Chinese-speaking APT10. The campaign – tracked over the course of 2019-2020 – targeted multiple industries, including the Japanese manufacturing industry and its overseas bases, in order to steal classified information.
The event will conclude with a reverse engineering exercise by Vitaly Kamlyuk, the head of Kaspersky’s GReAT in APAC. During the 20-minute session, Vitaly will unpack two heavy packers, demonstrating how to handle virtualization-based packers with ease.
“Cyberspace is largely an international field where borders hardly matter, and this is especially true when it comes to targeted attacks. In such context, it is especially important to have a good oversight of what goes on in the world in terms of APT activities. Asia has been a hotspot of APT activities, with threat actors actively updating and diversifying their tools, moving to new types of targets, and even expanding beyond espionage to activities such as ransomware. We hope that with this thematic ‘regional’ talk we will provide an opportunity for the researchers from other regions to get acquainted with some of the APT activities in Asia and have a chance to speak to people who work to protect against it – and get some valuable insights,” comments Sergey Novikov, the deputy director of Kaspersky’s GReAT.
The event will take place on February 25 at 14:00 GMT. Register for the webinar free here: https://kas.pr/hp6d
GReAT Ideas is aseries of talks that provide the inside scoop on the inner workings of Kaspersky’s Global Research and Analysis Team. Inspired by the regular team meet-ups held internally, as well as by the Security Analyst Summit’s friendly atmosphere of exchanging knowledge, these events will empower viewers with information about the threat landscape. This includes details on the most recently found threat cases and techniques used in the cybersecurity world, directly from the GReAT experts.
Kaspersky is a global cybersecurity company founded in 1997. Kaspersky’s deep threat intelligence and security expertise is constantly transforming into innovative security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky technologies and we help 250,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com.