We have been detecting attacks that have employed the use of PYLOT malware since at least 2015 and refer to it as Travle. Coincidentally, KL was recently involved in an investigation of a successful attack where Travle was detected, during which we conducted a deep analysis of this malware. Read Full Article
NetTraveler APT Gets a Makeover for 10th Birthday
This year, the actors behind NetTraveler celebrate 10 years of activity. For 10 years NetTraveler has been targeting various sectors, with a focus on diplomatic, government and military targets. Read Full Article
NetTraveler Is Back: The ‘Red Star’ APT Returns With New Tricks
NetTraveler, which we described in depth in a previous post, is an APT that infected hundreds of high profile victims in more than 40 countries. Known targets of NetTraveler (also known as ‘Travnet’ or “Netfile”) include Tibetan/Uyghur activists, oil industry companies,… Read Full Article
“NetTraveler is Running!” – Red Star APT Attacks Compromise High-Profile Victims
Over the last few years, we have been monitoring a cyber-espionage campaign that has successfully compromised more than 350 high profile victims in 40 countries. The main tool used by the threat actors during these attacks is NetTraveler, a malicious program used for covert computer surveillance Read Full Article