Chronicle of the Supply Chain Attack and Two Attack Strategies

Posted on Feb 28, 2020 to Presentations

The attacker group involved in ASUS incident is actively targeting companies in specific countries as well as global companies. KrCERT analyzed various supply chain attacks targeting Korean companies, and confirmed artifacts, malware code similarities. In addition, the team identified two strategies for supply chain attack (SW development environment penetration, update server penetration).

Presenters

Byeongjae Kim

Malware General Researcher
Korea Internet and Security Agency (KISA)

1 Presentation

More Related To This

- Presentation
- USA 2017
Successful Implementation of UEBA into Your Organization’s Environment

By Stewart Draper on Jul 26, 2019

Tags

Professional & Workforce Development

Analytics Intelligence & Response
- Presentation
- USA 2017
Recognizing, Preventing and Responding to Radicalization in the Workplace

By Matthew Doherty on Feb 17, 2017

Tags

Professional & Workforce Development

Risk Management & Governance
- Presentation
- USA 2017
Foreign Espionage, Social Media, and the Unwitting Insider Threat

By Bryan Krekel on Feb 17, 2017

Tags

Professional & Workforce Development