News Item

Indian Firms Hit by Fresh Wave of APT Attacks

Info Security Magazine

Security experts are warning of an uptick in targeted APT-style cyber attacks against Indian environmental, economic and governmental organizations, some of which abuse the Windows Management Instrumentation (WMI) service.

Kaspersky Lab principal security researcher, Kurt Baumgartner, wrote in a blog post that organizations on the sub-continent have been hit by many of the big name APTs over the years including Gh0stNet, Shadownet, Red October, NetTraveler, Turla, Mirage, Naikon, Chuli and Sabpub.

He claimed that in March, Kaspersky Lab had spotted activity from an APT crew in existence for some years, using an “unusual WMI technique”, with malware dubbed “WMIGhost” or “Shadow”. Read more.