{"id":17192,"date":"2019-12-13T10:52:29","date_gmt":"2019-12-13T18:52:29","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2019\/12\/13\/news-10928\/"},"modified":"2019-12-13T10:52:29","modified_gmt":"2019-12-13T18:52:29","slug":"news-10928","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2019\/12\/13\/news-10928\/","title":{"rendered":"VB2019 paper: Operation Soft Cell – a worldwide campaign against telecommunication providers"},"content":{"rendered":"

In June this year, Cybereason<\/em> published a blog post<\/a> on Operation Soft Cell, a targeted attack against telecom providers around the world. The actors behind the operation are particularly interested in Call Detail Records (CDR) for specific high-value users, which give them valuable metadata on their communication and location. Prior to publishing their blog post, Cybereason <\/em>researchers Mor Levi, Amit Serper and Assaf Dahan had submitted their research to VB2019 \u2013 and in October, they delivered their paper in London.<\/p>\n

Based on the TTPs, which include the use of the Poison Ivy RAT and the China Copper web shell, Cybereason<\/em> had concluded that the actors were likely Chinese. In a blog post<\/a> published this week, Microsoft<\/em> raises awareness for this actor, which it labels ‘GALLIUM’.<\/p>\n

\"SerperLevi_paper-001.jpeg\"Changes and new activity every quarter.<\/span>
Today, we publish the VB2019 paper by Cybereason<\/em> researchers Mor Levi, Amit Serper and Assaf Dahan in both HTML<\/a> and PDF <\/a>format.<\/p>\n

\u00a0<\/p>\n

outertext
https:\/\/www.virusbulletin.com\/rss<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"


Today we publish the VB2019 paper by Cybereason researchers Mor Levi, Amit Serper and Assaf Dahan on Operation Soft Cell, a targeted attack against telecom providers around the world. <\/p>\n

Read more<\/a> <\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[23177,10378,23176],"tags":[],"class_list":["post-17192","post","type-post","status-publish","format-standard","hentry","category-magazine","category-security","category-virusbulletin"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17192","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=17192"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17192\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=17192"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=17192"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=17192"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}