Recently, a large-scale attack campaign from an APT10 hacker group is attacking a multitude of Japanese companies, that include subsidiaries that are inhabited in nearly 17 regions throughout the world in an intelligence-gathering operation.
The Japanese companies in various sectors are being attacked in this campaign, that includes all those operating in the automotive, pharmaceutical, and engineering sectors, and managed service providers (MSPs) as well.
Symantec had detected the campaign when the suspicious DLL side-loading activity on one of their customer’s networks planted an alert in their Cloud Analytics technology. And this is available in Symantec Endpoint Security Complete (SESC).
However, this activity was later reviewed by the Threat Hunter investigators before being transferred to their investigation team for additional analysis.
Victims
This campaign has been detected in mid-October 2019, just at the beginning of October 2020. And the attack group is being active on…