'Lurid' APT-Type Attacks Target Former USSR Region

[InfoSec News <alerts () infosecnews org>]

http://www.darkreading.com/advanced-threats/167901091/security/attacks-breaches/231601981/lurid-apt-type-attacks-target-former-ussr-region.html

By Kelly Jackson Higgins
Dark Reading
Sept 22, 2011

Another day, another targeted attack campaign: This time, however, the 
former Soviet Union is in the bull's eye.

At least 50 victim organizations ranging from government ministries and 
agencies, diplomatic missions, research institutions, and commercial 
entities have been hit in the former Soviet Union region and other 
countries. Russia, Kazakhstan, Ukraine, and Vietnam have been hit 
hardest in the apparent industrial espionage campaign that has been 
going on at least since August 2010.

The advanced persistent threat (APT)-type attacks -- dubbed "Lurid" 
after the Trojan malware family being used in it -- has infected some 
1,465 computers in 61 countries with more than 300 targeted attacks. The 
attackers deployed a command-and-control (C&C) infrastructure of some 15 
domain names and 10 IP addresses to keep their foothold in the victim 
machines.

"This seems to be a notable attack in that respect: It doesn't target 
Western countries or states. It seems to be the reverse this time," says 
Jamz Yaneza, a research director at Trend Micro.

[...]


_____________________________________________________________
Register now for the #HITB2011KUL - Asia's premier
deep-knowledge network security event now in it's 9th year!
http://conference.hitb.org/hitbsecconf2011kul/