Friday, July 16, 2021

Talos Takes Ep: #61: SideCopy sounds so familiar, but I just can't put my finger on it...

By Jon Munshaw.

The latest episode of Talos Takes is available now. Download this episode and subscribe to Talos Takes using the buttons below, or visit the Talos Takes page.

Asheer Malhotra of Talos Outreach has spent the past few months tracking APTs all along the same line. APT 36, aka Transparent Tribe, was recently discovered adding new tools to attack Windows machines. Another, similar group called "Sidewinder," also went after targets on the Indian subcontinent.

Now, he's following the SideCopy APT, which takes the best of both worlds and borrows heavily from Transparent Tribe and Sidewinder. Asheer joins Talos Takes this week to discuss his research into SideWinder and break down the recent research paper he co-authored on the group

We discuss SideCopy's "borrowing" of other group's tactics, techniques and procedures (TTPs) and the active development of several trojans they use. 

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.