Lab52 offers a service which is completely focused on geopolitics and cybersecurity. Currently, there is an important correlation between geopolitics and cyberattacks. All the cyberattacks promoted by states have their origins or roots in the ancient framework of military espionage and intelligence ([1]). For that reason, Lab52 is permanently following and investigating the new updates related […]
Leviathan: Geostrategy and TTP (Tactics, Techniques and Procedures)
Executive summary: FireEye posted a relevant report regarding one of the most active threat groups; Leviathan, also known as TEMP, Periscope or TEMP.Jumper. This APT is supposedly attributed to the Chinese government ([1]). In this report is shown how involved the cyber threat groups are in the geostrategy of countries. China is the main supplier […]
Winnti Group: Geostrategic and TTP (Tactics, Techniques and Procedures)
Executive Summary China is one of the world powers with more presence within the international market of the gaming sector, controlling the Southeast Asian market and even more than half of the global market of the Gaming sector. Winnti Group is currently considered to be an APT group allegedly attributed to the government of China […]
WIRTE Group attacking the Middle East
The Intelligence Development Group of S2 Grupo has carried out an investigation on an actor from whom LAB52 has not been able to find references or similarities in open sources and who has been identified as WIRTE. The DFIR (Digital Forensics and Incident Response) team of S2 Grupo first identified this actor in August 2018 […]
ORANGEWORM GROUP – KWAMPIRS ANALYSIS UPDATE
The OrangeWorm group was named and described by the Symantec Company in different blog entries [1] [2]. We would highlight from these entries that it is a group that has been operational since 2015 and is focused on attacking the health, pharmaceutical, technological, manufacturing and logistics sectors. The sector most affected is healthcare as described […]
Sport as Softpower for the great Powers.
APT is the acronym of Advanced Persistent Threat. That is the name that receives a group of attackers that usually is related to a Nation-State to carry out cyberattacks to a concrete organizations that are considered targets by the threat group and the State which is sponsoring it. Cyber espionage has increased towards anti-doping sports […]