In April 2017 my monthly threat webinar focused on a cyberespionage group our Forward-Looking Threat Researcher, Feike Hacquebord, has been following for many years and recently published a report into the most recent two years of activities. In this post I want to focus on their tools and tactics versus who they target since this is what most organizations need to focus on in order to protect themselves if targeted by Pawn Storm or other actors using similar tactics.
Pawn Storm actors use a number of threats to compromise their victims:
All of these tools and tactics allow them to be very successful in their attacks and organizations should invest time in better understanding how these work and how they can improve their cyber security as well as their operational security to minimize the chance of compromise.
I cover all of these and the other information about the Pawn Storm group in my recorded webinar but more importantly share some solutions and best practices businesses can do to protect them from this group. I hope you enjoy the presentation and feel free to leave a comment below if you have any questions or leave me a recommendation for future webinars on what threats you’d like me to cover.