Operation Red Signature targets South Korean supply chain. [Research Saturday]

FromCyberWire Daily

Start listening View podcast show

Operation Red Signature targets South Korean supply chain. [Research Saturday]

FromCyberWire Daily

ratings:

Length:

27 minutes

Released:

Dec 8, 2018

Format:

Podcast episode

Description

Researchers at Trend Micro uncovered a supply chain attack targeting organizations in South Korea. With the goal of information theft, attackers compromised the update server of a third party support provider, resulting in the installation of a RAT, or remote access trojan.

Rik Ferguson is Vice President of Security Research at Trend Micro, and he guides us through their discoveries.

The research can be found here:
https://blog.trendmicro.com/trendlabs-security-intelligence/supply-chain-attack-operation-red-signature-targets-south-korean-organizations/

Released:

Dec 8, 2018

Format:

Podcast episode

More Episodes from CyberWire Daily

Skip carousel

Retirement plan breach shakes financial giant. by CyberWire Daily
40 min listen
Ransomware is just a prescription for chaos. by CyberWire Daily
31 min listen
An unprecedented surge in credential stuffing. by CyberWire Daily
32 min listen
Encore: Jack Rhysider: Get your experience points in everything. [Media] [Career Notes] by CyberWire Daily
8 min listen
Cerber ransomware strikes Linux. [Research Saturday] by CyberWire Daily
16 min listen
Cyber Talent Insights: Strengthening the cyber talent pipeline apparatus. (Part 3 of 3) [Special Edition] by CyberWire Daily
55 min listen
Kaiser Permanente's privacy predicament. by CyberWire Daily
29 min listen
The shadowy adversary in Cisco's crosshairs. by CyberWire Daily
30 min listen
Iran's covert cyber operations exposed. by CyberWire Daily
42 min listen
Visa crackdown against spyware swindlers. by CyberWire Daily
36 min listen
Renewed surveillance sparks controversy. by CyberWire Daily
36 min listen
Cloud Architect vs Detection Engineer: Mutual benefit. [CyberWire-X] by CyberWire Daily
18 min listen
Encore: Kiersten Todt: problem solving and building solutions. [Policy] [Career Notes] by CyberWire Daily
7 min listen
The art of information gathering. [Research Saturday] by CyberWire Daily
32 min listen
Cyber Talent Insights: Charting your path in cybersecurity. (Part 2 of 3) [Special Edition] by CyberWire Daily
53 min listen
Swift responses to cyberattacks. by CyberWire Daily
31 min listen
From phishing to felony. by CyberWire Daily
34 min listen
The rebirth of Russia's cyber warfare. by CyberWire Daily
32 min listen
Weathering the phishing front. by CyberWire Daily
36 min listen
AWS in Orbit: Extending the resilient edge to space. [T-Minus AWS in Orbit]: We speak to AWS Aerospace and Satellite, and Iridium about extending the resilient edge to space. by CyberWire Daily
25 min listen
Hunting vulnerabilities. by CyberWire Daily
32 min listen
Encore: Stu Sjouwerman: Trying for a win, win, win game. [CEO] [Career Notes] by CyberWire Daily
6 min listen
AWS in Orbit: Building a resilient outernet. [T-Minus AWS in Orbit]: We speak to AWS Aerospace and Satellite, and Rivada Space Networks about enabling secure point-to-point global connectivity, and the opportunities of establishing a low-latency optical-link communication mesh network in low earth orbit. by CyberWire Daily
22 min listen
Breaking down a a high-severity vulnerability in Kubernetes. [Research Saturday] by CyberWire Daily
16 min listen
Privacy, power, and the path forward. by CyberWire Daily
31 min listen
Cyber Talent Insights: Navigating the landscape for enterprise organizations. (Part 1 of 3) [Special Edition] by CyberWire Daily
44 min listen
Apple's worldwide warning on mercenary attacks. by CyberWire Daily
43 min listen
From deadlock to debate on a revised Section 702 bill. by CyberWire Daily
30 min listen
Unraveling a healthcare ransomware web. by CyberWire Daily
30 min listen
A possible breakthrough in data privacy legislation. by CyberWire Daily
32 min listen

Related podcast episodes

Skip carousel

Trojan Source--a threat to the software supply chain. Ransomware goes to influence operations school. Triple extortion? Criminal target selection. by CyberWire Daily
28 min listen
New tools target governments in Middle East? [Research Saturday] by CyberWire Daily
17 min listen
How Network Detection Helps Fill The Gaps - Steve Porcello - ESW #207: The recent surge of ransomware attacks has highlighted a shift in tactics employed by threat actors looking to extort organizations. Their methodology has changed from a quick, opportunistic attack to a prolonged, targeted approach. This shift in... by Security Weekly Podcast Network (Video)
30 min listen
How Network Detection Helps Fill The Gaps - Steve Porcello - ESW #207: The recent surge of ransomware attacks has highlighted a shift in tactics employed by threat actors looking to extort organizations. Their methodology has changed from a quick, opportunistic attack to a prolonged, targeted approach. This shift in... by Enterprise Security Weekly (Video)
30 min listen
A new Magecart campaign. Gootloader’s legal bait. Cryptowallet vulnerabilities. News from the hybrid war. And DARPA’s AI Cybersecurity Challenge. by CyberWire Daily
31 min listen
May 18, 2021: Double encryption ransomware attacks on the rise The UK seeks advice on defending against supply-chain attacks Eufy leaks customer camera feeds to strangers Thanks to our episode sponsor, Trend Micro Want to discover new ways to simplify and... by Cyber Security Headlines
6 min listen
Notes on the C2C market. A new cyberespionage threat actor has surfaced. Sharkbot made a brief return to Google Play. Privateering and catphishing in the hybrid war. by CyberWire Daily
30 min listen
Infostealer Malware 101: mitigating risks and strengthening defenses against this insidious threat. [CyberWire-X] by CyberWire Daily
31 min listen
PureLocker ransomware. APT33 update. Hong Kong and information war, in the courts and on PornHub. Facebook content takedowns. Alleged criminals prepare to face the court.: PureLocker ransomware. APT33 update. Hong Kong and information war, in the courts and on PornHub. Facebook content takedowns. Alleged criminals prepare to face the court. by CyberWire Daily
21 min listen
Asset inventory: Part of ICS network visibility and monitoring. by Control Loop: The OT Cybersecurity Podcast
46 min listen
Lessons of the SolarWinds attack: Two years after the discovery of one of the largest cyber attacks in history, we’re looking at the current state of security for both software and hardware supply chains. In early 2020, a group of hackers broke into a software system built and... by GZERO World with Ian Bremmer
38 min listen
Daily: Hospital hack, ransomware evolution, the FBI, and Scotland Yard.: Daily: Hospital hack, ransomware evolution, the FBI, and Scotland Yard. by CyberWire Daily
13 min listen
Attacking where vulnerable. by CyberWire Daily
16 min listen
The Solorigate cyberespionage campaign and sensitive corporate data. The cybersecurity implications of physical access during the Capitol Hill riot. Ransomware’s successful business model. by CyberWire Daily
26 min listen
The Elephant in the Pipeline: Securing the Wild, Untamed Software Supply Chain - Pete Morgan - ESW #348: We've seen general users targeted with phishing, financial employees targeted for BEC scams, and engineers targeted for access to infrastructure. The truly scary attacks, however, are the indirect ones that are automated. The threats that come in via... by Enterprise Security Weekly (Video)
47 min listen
The Elephant in the Pipeline: Securing the Wild, Untamed Software Supply Chain - Pete Morgan - ESW #348: We've seen general users targeted with phishing, financial employees targeted for BEC scams, and engineers targeted for access to infrastructure. The truly scary attacks, however, are the indirect ones that are automated. The threats that come in via... by Security Weekly Podcast Network (Video)
47 min listen
Hot Topics! Threat Hunting, CDM and Driving Cyber Innovation with CISA's Richard Grabowski and Jonathan McBride: Joining us this week are Richard Grabowski, Acting Program Manager for CISA’s CDM Program, and Jonathan McBride, Chief of Adversary Pursuit for CISA’s Threat Hunting Subdivision. We dive into the hot topics of threat hunting, adversary pursuit,... by To The Point - Cybersecurity
55 min listen
Software Trust & Adversaries, Developer-Focused Security - Shannon Lietz, Melinda Marks - ASW #246: Infosec is still figuring out useful metrics, how to talk about risk, and how to make resilience more relevant. Shannon talks about a new community effort to measure software trust. She also covers threat modeling and adversary management as steps... by Security Weekly Podcast Network (Audio)
77 min listen
The Elephant in the Pipeline: Securing the Wild, Untamed Software Supply Chain - Pete Morgan - ESW #348: We've seen general users targeted with phishing, financial employees targeted for BEC scams, and engineers targeted for access to infrastructure. The truly scary attacks, however, are the indirect ones that are automated. The threats that come in via... by Security Weekly Podcast Network (Audio)
106 min listen
May 20, 2021: Colonial Pipeline confirms it paid the ransom Qlocker ransomware operators shut down SolarWinds CEO speaks about supply chain attack Thanks to our episode sponsor, Trend Micro Want to discover new ways to simplify and strengthen your security? Join ... by Cyber Security Headlines
7 min listen
046 False Flags From Olympic Destroyer: 046 False Flags From Olympic Destroyer by Inside Security Intelligence
17 min listen
Online underground markets in the Middle East. [Research Saturday]: Online underground markets in the Middle East. [Research Saturday] by CyberWire Daily
21 min listen
ARCHER incident. Contact tracing smishing. Malware vs. air gaps. A surcharge for deletion. Anti-creepware. 5G coronavirus delusions.: ARCHER goes offline after a security incident. Scammers smish victims with bogus contact-tracing messages. Ramsay malware goes after air-gapped systems. Ako ransomware now places a surcharge on deletion of stolen data. Google boots creepware apps with... by CyberWire Daily
21 min listen
166 Inside the Adversary Exploit Process: With reported and classified each year, it can be challenging to keep track of which exploits are actually being used by threat actors. Researchers with Recorded Future’s Insikt Group have been exploring this issue, and one of their key findings is... by Inside Security Intelligence
19 min listen
Welcome to Control Loop: Giving back to the OT community. by Control Loop: The OT Cybersecurity Podcast
41 min listen
Threat group with novel malware operates in SE Asia. Data theft extortion rises. Key findings of Cisco's Cybersecurity Readiness Index. iPhones no longer welcome in Kremlin. Russian cyber auxiliaries & privateers devote increased attention to healthcare. by CyberWire Daily
27 min listen
2831: Rethinking Ransomware With Rapid7: In today's cybersecurity landscape, where does the true threat of ransomware lie? I explore this critical question with Raj Samani, SVP and Chief Scientist at Rapid7, in a revealing episode of Tech Talks Daily. With ransomware attacks making headlines... by The Tech Talks Daily Podcast
36 min listen
January 24, 2022: Ukraine attack update: experts find strategic similarities with NotPetya Molerats use Google Drive and Dropbox as attack infrastructure Senators introduce bill to protect satellites from getting hacked Thanks to our episode sponsor, deepwatch ... by Cyber Security Headlines
8 min listen
How Ransomware Evolved Into a Big Business - Ep.256: Gurvais Grigg, Chainalysis public sector CTO, and Kim Grauer, director of research at Chainalysis, review the ransomware landscape. Show Highlights: their backgrounds and roles at Chainalysis how a ransomware attack works what types of businesses are... by Unchained
57 min listen
A phishnet for the C-suite. Rootkit delivered by typosquatting. Stream-jacking in YouTube. Risk management. Hybrid war, and the laws thereof. by CyberWire Daily
26 min listen

Discover this podcast and so much more

Operation Red Signature targets South Korean supply chain. [Research Saturday]

Operation Red Signature targets South Korean supply chain. [Research Saturday]

Description

More Episodes from CyberWire Daily

Related podcast episodes