Attributing a cyberattack to a specific threat actor is a complex affair, as evidenced by new ESET research published recently.
Attributing a cyberattack to a specific threat actor is no easy task, as highlighted by new ESET research published this week. ESET experts recently uncovered a new APT group that they named CeranaKeeper and that takes aim at governmental institutions in Thailand, leveraging some tools previously attributed to Mustang Panda. However, a thorough review of the group’s tactics, techniques and procedures (TTPs), code, and infrastructure discrepancies suggests that CeranaKeeper and MustangPanda should be tracked as two separate entities.
How exactly were the attacks executed, and what more is there to know about CeranaKeeper and its relentless hunt for data? Find out in the video and make sure to also read this blogpost ESET Research discovers new government-attacking APT group and the related comprehensive white paper CeranaKeeper: A relentless, shape-shifting group targeting Thailand.
ESET Ireland 