Kaspersky: From the investigation of the digital heist of one billion and the analysis μιας ομάδας ψηφιακής κατασκοπείας που εκμεταλλευόταν δορυφόρους για να κρύψει τα ίχνη της, μέχρι τη διερεύνηση ενός εξελιγμένου κακόβουλο λογισμικού που ήταν σε θέση να διαταράξει την πετρελαϊκή βιομηχανία μιας περιοχής και άλλα πολλά – αυτή είναι η καθημερινότητα για πάνω από 40 ειδικούς που αποτελούν την Παγκόσμια Ομάδα Έρευνας και Ανάλυσης (Global Research and Analysts Team - GReAT) της Kaspersky Lab.
To highlight the background and diversity of these fashionable "Sherlock Holmes," to show that the smartest minds solve the hardest digital puzzles and to encourage others to become fellow travelers in their travels, Kaspersky Lab presented the website Great in Person.
Demand for digital security experts is growing more and more in contrast to the number of people with the right skills, experience and interest. Five years from now, the 1,8 deficit of millions of professionals in the field of digital security is projected, which is partly due to the failure to "recruit" millennials in the field of Information Technology. Kaspersky Lab's new project will help tackle this obstacle: focusing on the people who make up the GReaT team and in some stories around their biggest revelations, hoping to challenge the outdated perceptions of people's careers and lives who work for security in the IT sector.
The Global Research and Analysis Team is one of the company's most important assets, comprising leading security researchers who constantly analyze new and sophisticated digital threats and develop protection solutions for all Kaspersky Lab customers and partners. Founded in 2008, the team now consists of 42 specialists working worldwide – Europe, Russia, America, Asia, Middle East.
In recent years, the combination of expertise and passion of the GReAT team has led to the discovery of some of the most important targeted attacks, including: Miniduke, Flame, Equation, Red October, Duqu 2.0, CozyDuke, ProjectSauron and Regin. Implementing this type of attack costs millions of dollars and requires months of growth. Governments, army, scientific, commercial and industrial organizations are all at risk. They are targeting because they are who they are, being where they are, doing what they do or who they are doing.
«Το παγκόσμιο τοπίο ψηφιακών απειλών είναι σύνθετο και περιλαμβάνει, όχι μόνο ψηφιακούς εγκληματίες που αναζητούν οικονομικό όφελος, αλλά επίσης και κράτη-έθνη και hactivists. Καταρχάς, εκστρατείες που έμοιαζαν να είναι μεμονωμένα περιστατικά - για παράδειγμα η ληστεία της banks in Bangladesh – it was just the icing on the cake. At any given time hundreds, if not thousands, of unknown attacks are taking place. "Predators" never sleep - so neither do threat hunters," explains Costin Raiu, Director of GReAT, his team's "hunger" for new discoveries.
GReAT experts currently monitor over a hundred threat actors, as well as sophisticated malicious actions targeting commercial and government organizations in more than 80 countries. After the processtreatment of research, the company's experts created reports that help organizations "hunt" malware by providing them with forensic evidence.
Several of the investigations undertaken by Kaspersky Lab turned into joint ventures between GReAT and global organizations such as INTERPOL and Europol, εθνικές και περιφερειακές αστυνομικές αρχές, όπως η City of London Police και η National High Tech Crime Unit (NHTCU) της Ολλανδικής αστυνομικής υπηρεσίας, ενώ βοήθησαν και αρκετές παγκόσμιες ομάδες όπως οι Computer Emergency Response Teams (CERTs). Κατά τη διάρκεια των ερευνών, οι ερευνητές της εταιρείας παρείχαν την τεχνική τους εξειδίκευση σε θέματα που αφορούσαν την ανάλυση κακόβουλων προγραμμάτων, την υποστήριξη στη διαχείριση και τον έλεγχο υποδομών και μεθόδων εκμετάλλευσης.
"I may be a manager, but in fact I am still a security researcher. I'm still moving from the need to get there first, before anyone else. My personal field of interest includes APT attacks, exploits, complex threats, and almost anything that is popular at any given time, "added Costin Raiu.
The GReAT in Person website is an introduction to, but also a gateway to, the company's Threat Information Services, designed to respond to the more frequent demands of large corporations, government agencies, and law enforcement agencies involved in digital crime.
It is now clear that organizations need more than just a simple protection on their terminal devices to stay safe in the increasingly complex and ever evolving landscape of digital threats. This is why Kaspersky Lab has set up a service Reporting Report for APT Attacks (PDF), which provides customized reports on specific aspects of the threat landscape, as well as direct, dramatic reports of the latest and most advanced threats. They argue the organizations with an understanding of the scene of the threats and reveal the actions they need to take.
Also, GReAT supports one Digital Security Training (PDF) including a workforce awareness program, as well as training in Basic Digital Security Principles, Digital Crime Information, Malware Analysis / Reverse Engineering.
