A new sophisticated, layered and targeted malware has been hitting Russia and Russian interests lately, and is starting to spread out.
This has been named “Inception Framework” because of its massively layered design, in reference to the 2010 “Inception” movie.
The malware is very ingenious:
But all is not lost, as there are a very few things that can still be caught when a person is infected.
As per BlueCoat’s very informative blog post:
All the above vectors that are italic are covered by the correlation set below.
For such a layered malware, it only sounds appropriate to engage in a layered detection method:
Time line:
Equipped with these little helpers, you should now be able to relax for this festive season with the knowledge that any Inception style incursion into your workstations will be flagged.
Moreover, you’ll be made aware of who in your organization is being targeted by the attack early enough before any critical data is siphoned out.
Sources:
Security strategies are evolving; driven by regulatory requirements, customer expectations around data privacy and AI-driven…
In our April 2024 quarterly release, LogRhythm Axon showcases new enhancements from its two week…
In our April 2024 quarterly release, LogRhythm SIEM introduces new enhancements to bring you faster…