![[correlate]](/data/avatars/m/79/79653.jpg?1556985072){kind=avatar}
- May 4, 2019
- 801
Japan’s cyber security agency suffers months-long breach
Infiltration comes as allies scrutinise Tokyo’s defences against hacking
www.ft.com
Japan’s cyber security agency suffers months-long breach
- Thread starter [correlate]
- Start date
www.ft.com
- Jan 6, 2022
- 435
Just wow.Japan’s cyber security agency suffers months-long breach
Infiltration comes as allies scrutinise Tokyo’s defences against hacking
cartaphilus
Level 5
- Mar 17, 2023
- 202
Nine month Chinese spying? I wonder what they will call the baby? Maybe Xi?Japan’s cyber security agency suffers months-long breach
Infiltration comes as allies scrutinise Tokyo’s defences against hacking
- Jan 6, 2022
- 435
I've caught 2 chinese APT's in my career. Both were custom RMM tools and valid digital signatures with wierd Chinese IT companies. Also... the malware was broken into multiple files. There wasn't like one script or a couple of exes. This was many injected DLLs and No edr or sandbox was able to detect it.
I needed to use Unhackme Professional (Sysinternals on steroids plus mooches off all vendors via VT). I found many start up items that had these Chinese signatures. Immediately removed it and retained the samples for later investigation. The only way it would have been caught was by manual inspection. I also knew the software that was Allowed to be installed and this trojan was not on that list.
My worry is if Japan's security dept can't find these in time... what else is out there. Also shoes the true talent shortage required to deal with these class of threats.
cartaphilus
Level 5
- Mar 17, 2023
- 202
Neat, good job.
I am worried about what Chinese spyware is hiding at DISA?
As for Japan; China must be royalty pissed regarding those new Japanese
- May 4, 2019
- 801
What is worrisome is the difficulty of protecting against targeted attacks.
This requires more focus on
Implement a layered approach to security. This means using a variety of security measures, such as firewalls, intrusion detection systems, and data encryption, to protect against different types of attacks.
Educate employees about security threats. Employees should be aware of the different types of targeted attacks and how to detect them. They should also be educated on how to protect their personal information and avoid falling victim to social engineering scams.
Have a plan for responding to targeted attacks. Organizations should have a plan for responding to a targeted attack. This plan should include steps to contain the attack, minimize damage, and recover from the attack.
This requires more focus on
Implement a layered approach to security. This means using a variety of security measures, such as firewalls, intrusion detection systems, and data encryption, to protect against different types of attacks.
Educate employees about security threats. Employees should be aware of the different types of targeted attacks and how to detect them. They should also be educated on how to protect their personal information and avoid falling victim to social engineering scams.
Have a plan for responding to targeted attacks. Organizations should have a plan for responding to a targeted attack. This plan should include steps to contain the attack, minimize damage, and recover from the attack.
- Jan 6, 2022
- 435
You read my mind. Unfortunately the world isn't equipped that well.
Similar threads
