TMCnet News
root9B Releases Technical Analysis on Active Malware Campaign After Briefing Law EnforcementCOLORADO SPRINGS, Colo., June 22, 2017 /PRNewswire/ -- root9B, a root9B Holdings Inc. (NASDAQ: RTNB) company, and leading provider of advanced cybersecurity products, services, and training, has released an in-depth technical analysis report on a newly identified active campaign targeting point-of-sale systems. The report provides technical details of the adversary's techniques and malware and also provides defenders with information to support detection and mitigation activities. As of the close of business Monday, root9B had briefed Law Enforcement agencies in the United States, United Kingdom and Canada about its findings, and provided a detailed analysis of the malware and the ongoing campaign. The company has discovered an advanced, targeted adversary campaign focused on harvesting payment card information from POS systems. The report identifies active and operational Command and Control (C2) servers and memory-resident techniques used to maintain persistence and avoid detection. root9B's report uncovers the Tactics, Techniques and Procedures (TTPs) utilized and describes them in a detailed analysis. Details, excerpted from the Law Enforcement report, can be found here: https://www.root9b.com/newsroom/shelltea-poslurp-malware. "This malware displays the characteristics we would expect to see from an advanced, well resourced, and focused adversary," said Mike Morris, root9B Chief Technology Officer. "Memory-resident, or fileless malware, is very difficult to detect using traditional passive security solutions and highlights the benefits of active HUNT operations." "The findings are significant and consistent with the work the team at root9B had done while serving our country as members of our defense and intelligence agencies," said General Michael Hayden, a member of the root9B Advisory Board and former Director of the CIA and NSA. "Identifying threats while in progress, as opposed to post-breach analysis, is where the information security industry has to be." "Since we made the information public, the response has been very positive from a number of commercial organizations requesting additional data," said Eric Hipkins, root9B Chief Executive Officer. "Sharing information among defenders is vital as we defend our nation's networks." root9B will host a webinar to review and discuss the technical details behind the malware analysis released in the report and answer any questions. The Webinar will take place on Monday, June 26, 2017, at 2pm CDT. To attend this webinar, please register at the following link: https://attendee.gotowebinar.com/register/7551481427424407811 To join the industry conversation, use #ShellTea and #PoSlurp. About root9B About root9B Holdings, Inc. Forward Looking Statements
To view the original version on PR Newswire, visit:http://www.prnewswire.com/news-releases/root9b-releases-technical-analysis-on-active-malware-campaign-after-briefing-law-enforcement-300478332.html SOURCE root9B |