Activities of the Tick Cyber Espionage Group Over the Last 10 Years

Explore the decade-long activities of the Tick cyber espionage group in this informative conference talk. Gain insights into the threat actor's operations, primarily targeting institutions and companies in Korea and Japan since 2008. Learn about the various malware used by the group, including Bisodown, Daserf, Datper, Gofarer, NetBoy, Tickusb, and Xxmm. Discover the common characteristics and differences in attack methods employed against Korean and Japanese targets, such as creating large malware files to bypass security programs and exploiting country-specific vulnerabilities. Delve into the group's attack vectors, major activities in East Asia with a focus on Korea, malware characteristics, and techniques for evading security measures. Uncover new information about the Tick group inadvertently exposed through their internal tools. Benefit from the speaker's expertise as a senior principal malware researcher, gaining valuable knowledge to help minimize future cyber threats in the region.

#HITBGSEC COMMSEC: Activities Of The Tick Cyber Espionage Group Over The Last 10 Years - Cha Minseok