The complexities of cyberattack attribution – Week in security with Tony Anscombe
Video
As highlighted by new ESET research this week, attributing a cyberattack to a specific threat actor is a complex affair
04 Oct 2024
Attributing a cyberattack to a specific threat actor is no easy task, as highlighted by new ESET research published this week. ESET experts recently uncovered a new China-aligned APT group that they named CeranaKeeper and that takes aim at governmental institutions in Thailand, leveraging some tools previously attributed to Mustang Panda. However, a thorough review of the group’s tactics, techniques and procedures (TTPs), code, and infrastructure discrepancies suggests that CeranaKeeper and MustangPanda should be tracked as two separate entities.
How exactly were the attacks executed, and what more is there to know about CeranaKeeper and its relentless hunt for data? Find out in the video and make sure to also read this aptly-named blogpost Separating the bee from the panda: CeranaKeeper making a beeline for Thailand and the related comprehensive white paper CeranaKeeper: A relentless, shape-shifting group targeting Thailand.
Connect with us on Facebook, Twitter, LinkedIn and Instagram.