BlackBerry Webinar | Decade of the RATs: Corporate Espionage Attacks
The BlackBerry Research and Intelligence Team has released a new report that examines how five related advanced persistent threat (APT) groups operating in the interest of the Chinese government have systematically targeted Linux servers, Windows systems, and mobile devices while remaining undetected for nearly a decade.
The report, titled "Decade of the RATs: Cross-Platform APT Espionage Attacks Targeting Linux, Windows and Android," provides further insight into pervasive economic espionage operations targeting intellectual property.
Other key findings in the report include:
- The APT groups examined in this report are likely comprised of civilian contractors working in the interest of the Chinese government who readily share tools, techniques, infrastructure, and targeting information with one another and their government counterparts
- The report examines several new variants of well-known malware that are getting by network defenders through the use code-signing certificates for adware, a tactic that the attackers hope will increase infection rates as AV red flags are dismissed as just another blip in a constant stream of adware alerts
- A shift by attackers towards the use of cloud service providers for command-and-control (C2) and data exfiltration communications that appear to be trusted network traffic
The report comes on the heels of the US Department of Justice announcing several high-profile indictments from over 1,000 open FBI investigations into economic espionage as part of the D.O.J.’s China Initiative.
ABOUT THE SPEAKERS:
BlackBerry Director of Threat Intelligence
Kevin Livelli is Director of Threat Intelligence at BlackBerry, where he conducts long-term, complex investigations with the Research and Intelligence team. His work there follows ten years at 60 Minutes, where his investigative reporting and analysis were recognized with Peabody and Emmy awards. Before that, Livelli supervised investigations at the nation’s largest independent police oversight agency. A graduate of Dartmouth, he earned Master's degrees from Trinity College Dublin and Columbia University.
BlackBerry Director of Sales Engineering
Sara Lofgren (@LofgrenCylance) has been working in computer security for over a decade, with a focus on solving enterprise security problems through the union of technology, people, and processes. Besides fighting malware, her other main areas of interest include privacy, cryptography, and technology regulations. Sara lives in Minnesota with her children and a menagerie of animals.