Dragonfly Threat Against Western Energy Suppliers
Jump to navigation
Jump to search
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.
(Publication) Google search: [1]
| Dragonfly Threat Against Western Energy Suppliers | |
|---|---|
| Botnet | Oldrea, Karagany |
| Malware | |
| Botnet/malware group | |
| Exploit kits | |
| Services | |
| Feature | |
| Distribution vector | Spam, Watering hole, Altered software distribution |
| Target | Defence, Aviation, Energy, United States, Canada, Europe, Spain, France, Italy, Germany, Turkey, Poland |
| Origin | |
| Campaign | Dragonfly, Energetic Bear |
| Operation/Working group | |
| Vulnerability | |
| CCProtocol | |
| Date | 2014 / 2014-06-30 |
| Editor/Conference | Symantec |
| Link | http://www.symantec.com/connect/blogs/emerging-threat-dragonfly-energetic-bear-apt-group (Archive copy) |
| Author | |
| Type | White paper |
Abstract
“ On June 30th 2014, Symantec Security Response released a whitepaper detailing an ongoing cyber espionage campaign dubbed Dragonfly (aka Energetic Bear). The attackers appear to have been in operation since at least 2011. They managed to compromise a number of strategically important organizations for spying purposes and could have caused damage or disruption to energy supplies in affected countries. The two primary tools the group uses are Remote Access Trojans (RAT) named Backdoor.Oldrea and Trojan.Karagany.
Bibtex
@misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2014BFR1736,
editor = {Symantec},
author = {},
title = {Dragonfly Threat Against Western Energy Suppliers},
date = {30},
month = Jun,
year = {2014},
howpublished = {\url{http://www.symantec.com/connect/blogs/emerging-threat-dragonfly-energetic-bear-apt-group}},
}