Summary:
This report delves into significant cyber threats targeting the financial sector in South Korea and globally, highlighting malware, phishing incidents, and breaches of sensitive data. It discusses the implications of ransomware attacks and the sale of access privileges on dark web forums, emphasizing the ongoing risks to financial institutions.
#FinancialSecurity #DataBreach #CyberThreats
This report delves into significant cyber threats targeting the financial sector in South Korea and globally, highlighting malware, phishing incidents, and breaches of sensitive data. It discusses the implications of ransomware attacks and the sale of access privileges on dark web forums, emphasizing the ongoing risks to financial institutions.
#FinancialSecurity #DataBreach #CyberThreats
Keypoints:
Analysis of malware and phishing cases affecting the financial sector.
Top 10 malware targeting financial institutions are identified.
Statistics on leaked South Korean accounts are presented.
Phishing emails targeting the financial sector are detailed.
Major threats from the dark web, including credit card data breaches, are discussed.
Ransomware attacks on financial institutions are highlighted.
Case study of a database leak from a Hungarian bank.
Ransomware gangs such as Akira and Bashe have breached multiple financial companies.
Access privileges and sensitive data from Banco *** Bolivia are being sold on dark web forums.
MITRE Techniques:
Data Encrypted for Impact (T1486): Ransomware gangs encrypt organizational data to demand ransom.
Credential Dumping (T1003): Threat actors extract credentials from compromised systems.
Account Access via Compromised Credentials (T1078): Access privileges are sold on cybercrime forums.
Data Destruction (T1485): Ransomware attacks may lead to the destruction of critical data.
Exploitation of Public-Facing Application (T1190): Vulnerabilities in public-facing applications are exploited to gain access.
IoC:
[file hash] 138ae489789cd3e4c14979baaf621e0d
[file hash] 33ccf9ecd4f8c44d2ccd31b2d00ea50f
[file hash] 3423d799d20cbf77bd709445bf4ee3e9
[file hash] 4475790184db1c73705b021238587bd3
[file hash] 6c6760e8d2f5ca892a6cc0c767c07a89
Full Research: https://asec.ahnlab.com/en/84996/