Insights from the 1st Ibero-American Summit

Last week, we held our first Ibero-American virus analyst summit, to which we invited 34 journalists from 14 Latin American countries, as well as Spain and Portugal. Speakers and panelists included antivirus experts Jorge Mieres, Fabio Assolini, Vicente Diaz and Dmitry Bestuzhev.

Our summit was held in the vicinity of Cancn in Mexico – a place that is famous for its beaches, resorts and ancient Mayan pyramids.

What did we discuss? Regional targeted APT attacks, which we believe may become a real threat within 5 years or less. Specifically, we talked about targeted APT ttacks in which one Ibero-American country attacks another country in the same region. Such attacks can be reasonably expected to take place as soon as three or four years from now.

Another issue discussed was that the number of attacks targeting financial data correlates with the economic situation in the country affected by the attacks. The economic crisis in Spain and Portugal led to a decrease in the number of such attacks, compared to the countries of Latin America.

Jorge Mieres demonstrated that many infection-related problems in the Ibero-American region are due to pirated unpatched software. What further aggravates the situation is that there is often a lack of policies and configurations aimed at improving the overall security situation.

Fabio Assolini presented detailed information on Brazilian malware writers and their annual earnings. Curiously, while malware writers in Europe and Asia prefer to remain in the shade and refrain from disclosing their identities, their Brazilian colleagues conduct PR campaigns in social networks and on YouTube.

Finally, Vicente Diaz presented examples that demonstrate how easily our online social life can be used for targeted attacks. He also talked about the threats which we are not yet aware of and which will nevertheless become real in the near future, such as on-board computer infections in cars and other vehicles.

We also recorded several webcasts in three languages: English, Spanish and Portuguese. They should become available to the general public soon. The event offered a plethora of interesting insights, and this is just the beginning!

Insights from the 1st Ibero-American Summit

Your email address will not be published. Required fields are marked *



LuminousMoth APT: Sweeping attacks for the chosen few

We recently came across unusual APT activity that was detected in high volumes, albeit most likely aimed at a few targets of interest. Further analysis revealed that the actor, which we dubbed LuminousMoth, shows an affinity to the HoneyMyte group, otherwise known as Mustang Panda.

WildPressure targets the macOS platform

We found new malware samples used in WildPressure campaigns: newer version of the C++ Milum Trojan, a corresponding VBScript variant with the same version number, and a Python script working on both Windows and macOS.

Ferocious Kitten: 6 years of covert surveillance in Iran

Ferocious Kitten is an APT group that has been targeting Persian-speaking individuals in Iran. Some of the TTPs used by this threat actor are reminiscent of other groups, such as Domestic Kitten and Rampant Kitten. In this report we aim to provide more details on these findings.

Andariel evolves to target South Korea with ransomware

In April 2021, we observed a suspicious Word document with a Korean file name and decoy. It revealed a novel infection scheme and an unfamiliar payload. After a deep analysis, we came to a conclusion: the Andariel group was behind these attacks.

Subscribe to our weekly e-mails

The hottest research right in your inbox