Chronicle of the Supply Chain Attack and Two Attack Strategies

Posted on Feb 28, 2020 to Presentations

The attacker group involved in ASUS incident is actively targeting companies in specific countries as well as global companies. KrCERT analyzed various supply chain attacks targeting Korean companies, and confirmed artifacts, malware code similarities. In addition, the team identified two strategies for supply chain attack (SW development environment penetration, update server penetration).

Presenters

Byeongjae Kim

Malware General Researcher
Korea Internet and Security Agency (KISA)

1 Presentation

More Related To This

- Presentation
- USA 2020
You’ll Be Shocked When You See These 10 Tips from Former Industry Analysts

By John Pescatore and Greg Young on Feb 28, 2020

Tags

Technology Infrastructure & Operations

Risk Management & Governance

C-Suite View

Business Perspectives
- Presentation
- USA 2020
API Abuse through Mobile Apps: New Attacks, New Defenses

By Skip Hovsmith on Feb 28, 2020

Tags

Mobile & IoT Security

Identity

Hackers & Threats

DevSecOps & Application Security
- Presentation
- USA 2020
SIMs, eSIMs and Secure Elements: Dynamic Security for Connected Devices

By Mike Strock on Feb 28, 2020

Tags

Security Strategy & Architecture

Privacy

Mobile & IoT Security