Le Lézard
Classified in: Science and technology
Subjects: SVY, ASI

Palo Alto Networks Unit 42 Uncovers New Cyberattacks Targeting Government and Military Networks in Southeast Asia



SANTA CLARA, Calif., June 16, 2015 /PRNewswire/ -- Palo Alto Networks® (NYSE: PANW), the leader in enterprise security, today shared research that uncovers a series of potentially state-sponsored cyberattacks targeting government and military organizations in countries throughout Southeast Asia. 

PANW Logo 2015

Discovered by the Palo Alto Networks Unit 42 threat intelligence team and dubbed "Operation Lotus Blossom", the attacks appear to be an attempt to gain inside information on the operation of nation-states throughout the region.  The campaign dates as far back as three years and involves targets in Hong Kong, Taiwan, Vietnam, the Philippines and Indonesia.

Over 50 separate attacks have been identified in Operation Lotus Blossom. They all use a custom-built Trojan, named "Elise" to deliver highly targeted spear phishing emails and gain an initial foothold on targeted systems. Unit 42 believes the Elise malware was developed to specifically meet the unique needs of the operation, but also is being used in other non-related attacks by the adversary.

The attacks, which display the use of custom-built tools, extensive resources, and persistence across multiple years, suggest a well funded and organized team is behind them. Given these variables and the nature of the targets, Unit 42 believes the motivation for the attacks is cyber espionage and the actors behind them are associated with or sponsored by a nation-state with strong interests in the regional affairs of Southeast Asia.

QUOTE

The Unit 42 team discovered the Lotus Blossom campaign using the recently announced Palo Alto Networks AutoFocus service, which allowed the team's security analysts to correlate and interrogate security events from over 6,000 WildFire subscribers and other threat intelligence sources. These attacks are automatically prevented for all Palo Alto Networks Threat Prevention and WildFire subscribers. Others are encouraged to check their networks for signs of intrusion and add relevant indicators to their security controls, all of which are detailed in the full report.

Recommendations

About Unit 42
Unit 42 is the Palo Alto Networks threat intelligence team and is made up of accomplished cybersecurity researchers and industry experts. The team gathers, researches and analyzes up-to-the-minute threat intelligence, sharing insights with Palo Alto Networks customers, partners and the broader community to better protect organizations around the world. The Unit 42 team is available to consult with Palo Alto Networks customers on security concerns, others in the security industry, and for follow-up questions on their research.

About Palo Alto Networks
Palo Alto Networks is leading a new era in cybersecurity by protecting thousands of enterprise, government, and service provider networks from cyber threats.  Unlike fragmented legacy products, our security platform safely enables business operations and delivers protection based on what matters most in today's dynamic computing environments: applications, users, and content.  Find out more at www.paloaltonetworks.com.

Palo Alto Networks and the Palo Alto Networks Logo are trademarks of Palo Alto Networks, Inc. in the United States and in jurisdictions throughout the world. All other trademarks, trade names or service marks used or mentioned herein belong to their respective owners.

Logo - http://photos.prnewswire.com/prnh/20150527/218856LOGO

 

SOURCE Palo Alto Networks


These press releases may also interest you

at 16:30
Townsquare Media, Inc. announced today that it will release first quarter 2018 financial results before the market opens on Tuesday, May 8, 2018. Townsquare Media, Inc. will host a conference call to discuss certain first quarter 2018 financial...

at 16:30
In conjunction with DURECT Corporation's first quarter 2018 financial results press release, you are invited to listen to a conference call that will be broadcast live over the internet on Wednesday, May 2, 2018 at 4:30 pm Eastern Time (1:30 pm...

at 16:22
Krusteaz, maker of pancake and waffle mixes loved by families since 1932, is celebrating moms this Mother's Day by asking families to celebrate mom in what else but...pancake art! Commemorating mom with lifelike portraits designed by the pancake...

at 16:15
Bio-Techne Corporation announced today that it has hired Kim Kelderman as President, Diagnostics and Genomics, effective April 30, 2018.  Mr. Kelderman will be based in California and will lead Bio-Techne's diagnostics business; he will also drive...

at 16:15
Mirati Therapeutics, Inc. (the Company or Mirati), a clinical-stage targeted oncology company, today provided a progress update on its lead development programs and announced updated, positive clinical trial data for sitravatinib, a spectrum...

at 16:15
Aware, Inc. , a leading global provider of biometrics software and solutions, today announced that it has been recognized by Enterprise Security Magazine as a Top Ten Multifactor Authentication Solution Provider of 2018. Biometric authentication is...




News published on 16 june 2015 at 08:00 and distributed by: