Wipers and fileless malware: The first three months of 2017 saw a sharp increase in the sophistication of digital attacks supported by states, with threat actors turning their attention to wipers, as well as financial crime. 
These, as well as other trends, are covered in its first quarterly summary report Kaspersky Lab με στοιχεία από τις τακτικές αναφορές ενημέρωσης ψηφιακών απειλών που στέλνει αποκλειστικά στους συνδρομητές της.
The new quarterly APT Trends report will be available for free and will highlight significant developments in targeted attacks as well as emerging trends requiring direct attention from businesses and organizations. The content of the first quarter report draws on the observations made by Kaspersky Lab specialists who monitored the activity of APT in the first quarter
In the basics points of the first quarter of 2017 include:
- The wipers are exploited by targeted threat operators, both for digital sabotage and for tracing traces of digital espionage. An advanced generation of wipers was used in the new wave of group attacks Shamoon. Subsequent research led to the discovery of StoneDrill and similarities in code with that of the NewsBeef (Charming Kitten) team. A StoneDrill victim found in Europe.
- Targeted attackers differ in how they steal money. The long-term monitoring of the Lazarus team identified a subgroup, which Kaspersky Lab called BlueNoroff and is actively attacking financial institutions from different countries, including a high-intensity attack in Poland. BlueNoroff is believed to be hiding behind the infamous robbery at a bank in Bangladesh.
- The fileless malware is used in attacks by both targeted attackers and digital criminals in general - helping to prevent them from locating them and making it difficult for criminal investigations. Kaspersky Lab experts have found examples of lateral movement tools used in Shamoon attacks, attacks against banks in Eastern Europe and in the hands of a number of other APT operators.
"The landscape of targeted threats is constantly evolving and attackers are getting better prepared, looking for and exploiting new gaps and opportunities. That is why Information on Threats is so important: it embraces the organizations by understanding and reveals the actions they need to take. For example, the threats landscape for the first quarter highlights the need to track bad software footprints in memory and response to incidents to combat attacks fileless malware, and security that can detect anomalies throughout the network activity, δήλωσε ο Juan Andres Guerrero-Saade, Senior Security Researcher of Kaspersky Lab's Global Research and Analysis Group.
Kaspersky Lab's Global Research and Analysis Team is currently monitoring over one hundred threatening agencies and sophisticated malware that target commercial and governmental organizations in more than 80 countries. During the first quarter of 2017, the company's know-how created 33 private reports for Information Service subscribers, with Compatibility Indicator data and YARA rules to help mark and hunt malicious software.
