Tag Archive: APT

Indra — Hackers Behind Recent Attacks on Iran

August 14, 2021 11:00 am

Check Point Research reveals that a threat actor named Indra is responsible for the attacks against targets in Iran, as well as against companies in Syria.

Nazar: Spirits of the Past

May 5, 2020 7:00 am

In mid-2017, The Shadow Brokers exposed NSA files in a leak known as "Lost In Translation". Recently, researcher uncovered "Nazar", a previously-unknown APT that was mentioned in the leak. We decided to dive into each and every one of the components and share our technical analysis. What we found out, is far from being "advanced".

Canadian banks targeted in a massive phishing campaign

December 23, 2019 3:00 am

Introduction Recently, Check Point engines detected a new phishing campaign impersonating the Royal Bank of Canada (RBC). The attack starts by sending legitimate-looking e-mails containing a PDF attachment to multiple organizations and victims... Click to Read More

UPSynergy: Chinese-American Spy vs. Spy Story

September 5, 2019 6:00 am

Research By: Mark Lechtik & Nadav Grossman   Introduction Earlier this year, our colleagues at Symantec uncovered an interesting story about the use of Equation group exploitation tools by an alleged Chinese group... Click to Read More

FINTEAM: Trojanized TeamViewer Against Government Targets

April 22, 2019 6:00 am

Introduction Recently, Check Point researchers spotted a targeted attack against officials within government finance authorities and representatives in several embassies in Europe. The attack, which starts with a malicious attachment disguised as a... Click to Read More

Zooming In On “Domestic Kitten”

October 23, 2018 7:29 am

  In recent years, Iran has been channeling significant resources into cyber warfare, devoting designated entities within multiple government agencies to conduct extensive espionage campaigns against foreign countries such as the United States,... Click to Read More

Domestic Kitten: An Iranian Surveillance Operation

September 7, 2018 6:03 am

  Chinese strategist Sun Tzu, Italian political philosopher Machiavelli and English philosopher Thomas Hobbes all justified deceit in war as a legitimate form of warfare. Preceding them all, however, were some in the... Click to Read More

Interactive Mapping of APT-C-23

August 26, 2018 11:54 pm

Research by: Aseel Kayal   Last month, we investigated the renewal of a targeted attack against the Palestinian Authority, attributed to the APT-C-23 threat group. Although this campaign was initially discovered in early... Click to Read More

GlanceLove: Spying Under the Cover of the World Cup

July 12, 2018 6:02 am

  When the whistle of the first match of the 2018 World Cup blew, it didn’t just signal the start of an exciting tournament for football fans worldwide, but also gave the green... Click to Read More

APT Attack In the Middle East: The Big Bang

July 8, 2018 2:24 am

  Over the last few weeks, the Check Point Threat Intelligence Team discovered the comeback of an APT surveillance attack against institutions across the Middle East, specifically the Palestinian Authority. The attack begins... Click to Read More

SiliVaccine: Inside North Korea’s Anti-Virus

May 1, 2018 6:07 am

Research By: Mark Lechtik and Michael Kajiloti   Revealed: In an exclusive piece of research, Check Point Researchers have carried out a revealing investigation into North Korea’s home-grown anti-virus software, SiliVaccine. One of... Click to Read More