Dragonfly Threat Against Western Energy Suppliers

From Botnets.fr
Jump to: navigation, search

(Publication) Link to the old Wiki page : [1] / Google search: [2]

Dragonfly Threat Against Western Energy Suppliers
Botnet Oldrea, Karagany
Malware
Botnet/malware group
Exploit kits
Services
Feature
Distribution vector Spam, Watering hole, Altered software distribution
Target Defence, Aviation, Energy, United States, Canada, Europe, Spain, France, Italy, Germany, Turkey, Poland
Origin
Campaign Dragonfly, Energetic Bear
Operation/Working group
Vulnerability
CCProtocol
Date 2014 / 2014-06-30
Editor/Conference Symantec
Link http://www.symantec.com/connect/blogs/emerging-threat-dragonfly-energetic-bear-apt-group (Archive copy)
Author
Type White paper

Abstract

On June 30th 2014, Symantec Security Response released a whitepaper detailing an ongoing cyber espionage campaign dubbed Dragonfly (aka Energetic Bear). The attackers appear to have been in operation since at least 2011. They managed to compromise a number of strategically important organizations for spying purposes and could have caused damage or disruption to energy supplies in affected countries. The two primary tools the group uses are Remote Access Trojans (RAT) named Backdoor.Oldrea and Trojan.Karagany.

Bibtex

 @misc{empty</strong>2014BFR1736,
   editor = {Symantec},
   author = {},
   title = {Dragonfly Threat Against Western Energy Suppliers},
   date = {30},
   month = Jun,
   year = {2014},
   howpublished = {\url{http://www.symantec.com/connect/blogs/emerging-threat-dragonfly-energetic-bear-apt-group}},
 }