{"id":628,"date":"2012-04-03T12:43:26","date_gmt":"2012-04-03T09:43:26","guid":{"rendered":"http:\/\/saisa.eu\/blogs\/Guidance\/?p=628"},"modified":"2012-04-03T12:45:01","modified_gmt":"2012-04-03T09:45:01","slug":"luckycat-threat-analysis-by-trend-micro","status":"publish","type":"post","link":"https:\/\/saisa.eu\/blogs\/Guidance\/?p=628","title":{"rendered":"&#8220;Luckycat&#8221; threat, analysis by Trend Micro"},"content":{"rendered":"<p>Trend Micro has published their report on <a href=\"http:\/\/www.trendmicro.com\/us\/security\/luckycat\/\">Luckycat<\/a> APT campaign.<\/p>\n<blockquote>\n<p><a href=\"https:\/\/en.wikipedia.org\/wiki\/Advanced_persistent_threat\">Advanced persistent threat<\/a> (APT) usually refers to a group with both the capability and the intent to persistently and effectively target a specific entity.<\/p>\n<ul>\n<li>\n<div>Advanced \u2013 Operators behind the threat have a full spectrum of intelligence-gathering techniques at their disposal.<\/div>\n<\/li>\n<li>\n<div>Persistent \u2013 Operators give priority to a specific task, rather than opportunistically seeking information for financial or other gain.<\/div>\n<\/li>\n<li>\n<div>Threat \u2013 APTs are a threat because they have both capability and intent.<\/div>\n<\/li>\n<\/ul>\n<\/blockquote>\n<p>In the examples of the report, the machines were compromised by exploiting vulnerabilities in Adobe Reader and in Microsoft Office.<\/p>\n<p><img loading=\"lazy\" height=\"509\" alt=\"global-apt-targets-infographic sm\" src=\"http:\/\/saisa.eu\/blogs\/Guidance\/wp-content\/uploads\/2012\/04\/global-apt-targets-infographic_sm-2.jpg\" width=\"638\" \/><\/p>\n<p>Direct link to report is <a href=\"http:\/\/www.trendmicro.com\/cloud-content\/us\/pdfs\/security-intelligence\/white-papers\/wp_luckycat_redux.pdf\">here<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Trend Micro has published their report on Luckycat APT campaign. Advanced persistent threat (APT) usually refers to a group with both the capability and the intent to persistently and effectively target a specific entity. Advanced \u2013 Operators behind the threat &hellip; <a href=\"https:\/\/saisa.eu\/blogs\/Guidance\/?p=628\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[47,44],"tags":[],"_links":{"self":[{"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=\/wp\/v2\/posts\/628"}],"collection":[{"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=628"}],"version-history":[{"count":1,"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=\/wp\/v2\/posts\/628\/revisions"}],"predecessor-version":[{"id":629,"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=\/wp\/v2\/posts\/628\/revisions\/629"}],"wp:attachment":[{"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=628"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=628"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=628"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}