Security experts are warning of an uptick in targeted APT-style
cyber attacks against Indian environmental, economic and governmental
organizations, some of which abuse the Windows Management Instrumentation (WMI)
Kaspersky Lab principal security researcher, Kurt
Baumgartner, wrote in a blog post that organizations on the
sub-continent have been hit by many of the big name APTs over the years
including Gh0stNet, Shadownet, Red October, NetTraveler, Turla, Mirage, Naikon,
Chuli and Sabpub.
He claimed that in March,
Kaspersky Lab had spotted activity from an APT crew in existence for some
years, using an “unusual WMI technique”, with malware dubbed “WMIGhost” or
“Shadow”. Read more.