Stealthy APT group plunders very specific corporate email accounts

Help Net Security

An eminently sophisticated and stealthy APT group is going after specific corporate email accounts and has, on occasion, managed to remain undetected in victim environments for at least 18 months. Catalogued as UNC3524 by Mandiant, the threat actor is also extremely adept at re-gaining access to a victim environment when booted out, “re-compromising the environment with a variety of mechanisms, immediately restarting their data theft campaign.” The APT and its route to corporate email UNC3524 … More →

The post Stealthy APT group plunders very specific corporate email accounts appeared first on Help Net Security.