- May 7, 2016
- 1,311
Symantec researchers this week detailed what they say is a China-based advanced persistent threat (APT) group that has been launching numerous attacks against high-profile entities since April 2014.
Named the "Suckfly group" by Symantec, the threat actors have launched attacks against government and commercial organizations in numerous countries, but the primary targets appear to be individuals and organizations located in India.
The group appears to be associated with cyber-espionage campaigns in which a piece of custom malware dubbed Backdoor.Nidiran was used. Symantec revealed in March that the backdoor was signed with a valid code-signing certificate, and that the threat actors had been using numerous stolen certificates to sign various hacking tools.
In a new report on the Suckfly group, Symantec’s Jon DiMaggio explains that many of the group’s targets in 2015 were well known commercial organizations located in India. These include one of India's largest financial organizations, a large e-commerce company and its primary shipping vendor, one of India's top five IT firms, two government organizations, and a United States healthcare provider's Indian business unit.
A quick look at the infection rate for each of the targets shows that the group focused mainly on attacking government networks.
Read Full Story:Suckfly Hackers Target Organizations in India | SecurityWeek.Com
Named the "Suckfly group" by Symantec, the threat actors have launched attacks against government and commercial organizations in numerous countries, but the primary targets appear to be individuals and organizations located in India.
The group appears to be associated with cyber-espionage campaigns in which a piece of custom malware dubbed Backdoor.Nidiran was used. Symantec revealed in March that the backdoor was signed with a valid code-signing certificate, and that the threat actors had been using numerous stolen certificates to sign various hacking tools.
In a new report on the Suckfly group, Symantec’s Jon DiMaggio explains that many of the group’s targets in 2015 were well known commercial organizations located in India. These include one of India's largest financial organizations, a large e-commerce company and its primary shipping vendor, one of India's top five IT firms, two government organizations, and a United States healthcare provider's Indian business unit.
A quick look at the infection rate for each of the targets shows that the group focused mainly on attacking government networks.
Read Full Story:Suckfly Hackers Target Organizations in India | SecurityWeek.Com
![[correlate]](/data/avatars/s/79/79653.jpg?1556985072){kind=avatar}
