EARLY WARNING OF A DRUNKED-APT CAMPAIGN – SUSPECTED DATA EXFILTRATION
Jul 2, 2018
Antuit Cyber Intelligence Research Team (“ACIRT”) has determined a possibility of an APT campaign leveraging compromised websites to install malicious plugins/ extensions on the victim’s browser.
Identified as Drunked-APT, this campaign involves unknown Chinese attackers who are planning to target financial, retail and IT services companies operating in South-East Asia, Australia and Japan.
Exfiltrating sensitive data is suspected to be the primary intent of threat actors behind this attack.
The Antuit Risk Rating for this Out of Band Notification is: HIGH
Analysis of captured threat actor footprints and correlation with external threat vectors indicates that this is a possible threat, and your organization is advised to take precautionary measures as highlighted in this report.