During the first half of 2014, attacks against Asia-Pacific countries showed some notable techniques used by attackers to evade detection and steal data. This report details the targeted attack campaigns and trends over that period.
The latter half of 2013 lay witness to two new targeted attack campaigns: BLYPT, which hosts its servers in Romania and Turkey, and Esile, which targets government agencies in APAC to execute remote commands.
The EvilGrab campaign—known for targeting governments and diplomatic agencies in China, Japan, and the rest of the world—headlines this quarter’s targeted attack report. Among EvilGrab's many capabilities include grabbing multimedia files and stealing cred