UPDATES
3
4
3
1
4
threat
UPDATES
3
NORTH KOREA
The UK and international partners have unveiled a global cyberespionage campaign conducted by attackers sponsored by the Democratic People ’ s Republic of Korea ( DPRK ) to steal military and nuclear secrets from organisations worldwide .
The National Cyber Security Centre ( NCSC ) – part of GCHQ – issued a new advisory , along with partners in the United States and the Republic of Korea . The advisory reveals that a cyberthreat group known as Andariel has been infiltrating organisations worldwide to steal sensitive and classified technical information and intellectual property .
The NCSC assesses that Andariel is part of the DPRK ’ s Reconnaissance General Bureau ( RGB ) 3rd Bureau and that their malicious cyberactivities pose a persistent threat to critical infrastructure globally . The cyberactors have mainly targeted defence , aerospace , nuclear and engineering entities , as well as the medical and energy sectors , seeking information such as contract specifications , design drawings and project details .
4
AUSTRALIA
The Australian Signals Directorate ’ s Australian Cyber
Security Centre and international partners are releasing Best Practices for Event Logging and Threat Detection .
This guide will assist organisations in defining a baseline for event logging to mitigate malicious cyberthreats .
The increased prevalence of malicious actors employing living off the land ( LOTL ) techniques , such as living off the land binaries ( LOLBins ) and fileless malware , highlights the importance of implementing and maintaining an effective event logging program .
CISA encourages public and private sector senior IT decision makers , operational technology ( OT ) operators , network administrators , network operators and critical infrastructure organisations to review the best practices in the guide and implement recommended actions .
These actions can help detect malicious activity , behavioural anomalies , and compromised networks , devices or accounts .
3
1
4
WWW . INTELLIGENTCISO . COM 25