Fancy Bear Threat Group Deploys ‘Rare’ Modification of AZZY Backdoors

  • 9 December 2015
  • 1 reply
  • 7 views

Userlevel 7
Badge +54
David Bisson
Dec 8, 2015
 
                                                 http://www.tripwire.com/state-of-security/wp-content/uploads/cache//Fancy-Bear/2817693511.jpg
 
Last month, Microsoft released a report on the advanced threat group Fancy Bear.
 
This alert, as noted by security blogger Graham Cluely, explains how the group—otherwise known as “Sofacy,” “Sednit,” “STRONTIUM,” and “APT 28?—stalks mailing lists, social media sites, and public forums in search of potential victims from whom it can steal login credentials. Here Fancy Bear makes use of spear phishing techniques, a form of attack that relies on a lack of awareness among targets, to get what it wants.
 
Spear phishing is a significant concern for enterprises, and one can only hope that organizations everywhere interpret Microsoft’s report as an impetus to reduce their attack surfaces and implement some security awareness training among their staff.
 
But that’s not the end of the story for Fancy Bear. Unfortunately, phishing emails are just the tip of the iceberg of what this particular advanced threat group is capable.
 
Full Article

1 reply

Userlevel 7
Awareness and caution is the best approach to exploits. Also training on a ongoing basis is important. However to the average user as the saying goes "out of sight and out of mind" is one of the downfalls.

Reply