Gelsemium distributed documents such as a resume written in Chinese to lure the victims. This technique was used in the past as mentioned by G DATA and Verint Systems.
Spear-phishing documents used exploits targeting a Microsoft Office vulnerability ( CVE-2012-0158). The first vector was observed in 20 while investigating a targeted cyber-espionage campaign. The report mentions that new targets were discovered that include governments, universities, electronics manufacturers, as well as religious organizations in East Asia and the Middle East. Researchers from ESET have recently linked a stealthy cyberespionage group known as Gelsemium to the NoxPlayer Android emulator supply-chain attack that targeted gamers a few months ago.Īctive since 2014, Gelsemium deploys its malware against a small number of victims, which suggests its involvement in cyberespionage.
0 kommentar(er)
