Two ESET malware researchers showcased their expertise at this year’s LABScon event by dissecting complex cyberattacks carried out by two well-known APT (Advanced Persistent Threat) groups. The researchers shed light on the methods and motivations behind these sophisticated attacks, providing valuable insights for the security community.
Zuzana Hromcová, on Thursday, presented her findings on the cyberespionage campaigns executed by OilRig, an Iranian-aligned threat group, over the course of 2021 and 2022. Specifically, Hromcová focused on two campaigns named OuterSpace and JuicyMix, both of which targeted Israeli organizations. The selection of Israeli targets aligns with OilRig’s historical focus on the Middle East region. Interestingly, both campaigns utilized similar tactics, indicating a consistent playbook employed by the group. For in-depth analysis and research, the findings were published on WeLiveSecurity, a reliable cybersecurity resource.
Filip Jurčacko took the stage on Friday to share insights into a sophisticated backdoor discovered by ESET called Deadglyph. This backdoor has been attributed to the Stealth Falcon APT group and was identified during routine monitoring of suspicious activities on the systems of high-profile customers, some of whom are located in the Middle East. Jurčacko’s presentation shed light on the tactics and techniques employed by Stealth Falcon, providing critical knowledge to enhance defense against such targeted attacks. The research piece is available for further exploration on WeLiveSecurity.
To complement the researchers’ presentations, a video was shared that delves into the potential risks and consequences of AI errors in cybersecurity. The video, titled “What happens if AI is wrong – Week in security with Tony Anscombe,” provides additional perspective on the evolving challenges faced by security professionals in the age of artificial intelligence.
In addition to providing valuable insights, ESET encourages engagement and interaction with their community through various social media platforms. The company invites individuals to connect with them on Facebook, Twitter, LinkedIn, and Instagram, expanding the scope for sharing knowledge and exchanging ideas on cybersecurity.
By participating in the LABScon conference and sharing their expertise, the ESET researchers contribute significantly to the collective understanding of cyber threats and provide actionable intelligence to protect organizations against APT group attacks. Their in-depth analysis of OilRig’s campaigns and Stealth Falcon’s backdoor highlights the importance of continuous monitoring, threat intelligence, and proactive defense to stay ahead of advanced cyber adversaries.
The cybersecurity landscape is constantly evolving, and events like LABScon serve as vital platforms for industry experts to collaborate, learn from each other, and strengthen defenses against sophisticated cyber threats. ESET’s active participation in such events reaffirms their commitment to knowledge-sharing and collective growth in the field of cybersecurity.