Forwarded from Pegasus NSO & other spyware
Equation Group: The Crown Creator of Cyber-Espionage | Kaspersky โ 2015
#EquationGroup #StuxNet #Flame
Kaspersky Lab discovers the ancestor of Stuxnet and Flame โ powerful threat actor with an absolute dominance in terms of cyber-tools and techniques
For several years, Kaspersky Labโs Global Research and Analysis Team (GReAT) has been closely monitoring more than 60 advanced threat actors responsible for cyber-attacks worldwide. The team has seen nearly everything, with attacks becoming increasingly complex as more nation-states got involved and tried to arm themselves with the most advanced tools. However, only now Kaspersky Labโs experts can confirm they have discovered a threat actor that surpasses anything known in terms of complexity and sophistication of techniques, and that has been active for almost two decades โ The Equation Group.#EquationGroup #StuxNet #Flame
Forwarded from Pegasus NSO & other spyware
fast16 | Mystery ShadowBrokers Reference Reveals High-Precision Software Sabotage 5 Years Before Stuxnet | SentinelOne
#Fast16 #NSA #Stuxnet
SentinelLABS has uncovered a previously undocumented cyber sabotage framework whose core components date back to 2005
fast16.sys selectively targets high-precision calculation software, patching code in memory to tamper with results. By combining this payload with self-propagation mechanisms, the attackers aim to produce equivalent inaccurate calculations across an entire facility.
This 2005 attack is a harbinger for sabotage operations targeting ultra expensive high-precision computing workloads of national importance like advanced physics, cryptographic, and nuclear research workloads. fast16 predates Stuxnet by at least 5 years, and stands as the first operation of its kind.
The use of an embedded customized Lua VM predates the earliest Flame samples by 3 years
โfast16โ is referenced in the infamous ShadowBrokers leak of NSAโs Territorial Dispute components.#Fast16 #NSA #Stuxnet