Tag: Apt1

APT1 Webinar Hosted by Lancope

Lancope will deliver a complimentary webinar on Thursday, March 28 at 11:00 a.m. ET / 8:00 a.m. PT to discuss how organizations can detect APT1 within their networks. The company will also reveal new APT1 technical indicators discovered by the StealthWatch Labs research team. READ MORE

New APT1/Comment Crew Indicators

StealthWatch Labs has uncovered a new set of technical indicators associated with the APT1 attacks that have not been published in another forum as far as we are aware. READ MORE

Mandiant’s Chinese Connection

Mandiant, an information security company specializing in incident response, recently released a report on a group they call APT1. In this report, they attempt to show that APT1 may actually be an organization controlled by the People’s Republic of China. While attributions of this sort are common in the media, this report provides a large amount of data and discloses the methods used to obtain the information. As is often the case, some controversy has emerged over whether or not Mandiant's attribution is correct. Does the data support their conclusions? READ MORE

Has APT1 Been Eating My Porridge?

Thanks to the Mandiant APT1 report appendices, we have a wealth of threat data we can use to flush APT1 out of the network. In this installment, we’ll take a look at how to accomplish that with Lancope’s StealthWatch System. READ MORE