Kaspersky: Από την έρευνα της ψηφιακής ληστείας του ενός δισεκατομμυρίου και την ανάλυση μιας ομάδας ψηφιακής κατασκοπείας που εκμεταλλευόταν δορυφόρους για να κρύψει τα ίχνη της, μέχρι τη διερεύνηση ενός εξελιγμένου malicious λογισμικού που ήταν σε θέση να διαταράξει την πετρελαϊκή βιομηχανία μιας περιοχής και άλλα πολλά – αυτή είναι η καθημερινότητα για πάνω από 40 ειδικούς που αποτελούν την Παγκόσμια Ομάδα Έρευνας και Ανάλυσης (Global Research and Analysts Team - GReAT) της Kaspersky Lab.
To highlight the background and diversity of these fashionable "Sherlock Holmes," to show that the smartest minds solve the hardest digital puzzles and to encourage others to become fellow travelers in their travels, Kaspersky Lab presented the website Great in Person.
Demand for digital security experts is growing more and more in contrast to the number of people with the right skills, experience and interest. Five years from now, the 1,8 deficit of millions of professionals in the field of digital security is projected, which is partly due to the failure to "recruit" millennials in the field of Information Technology. Kaspersky Lab's new project will help tackle this obstacle: focusing on the people who make up the GReaT team and in some stories around their biggest revelations, hoping to challenge the outdated perceptions of people's careers and lives who work for security in the IT sector.
The Global Research and Analysis Team is one of the company's most important strengths, including leading security researchers who are constantly analyzing new and advanced digital threats and developing protection solutions for all Kaspersky Lab customers and partners. Founded in 2008, the team consists of 42 experts working worldwide - Europe, Russia, America, Asia, Middle East.
In recent years, the combination of expertise and passion of the GReAT team has led to the discovery of some of the most important targeted attacks, including: Miniduke, Flame, Equation, Red October, Duqu 2.0, CozyDuke, ProjectSauron and Regin. These types of attacks cost millions of dollars to implement and require months of development. Governments, military, scientific, commercial and industrial organizations are all at risk. They are a target because of who they are, where they are, what they do, or who they do it with.
«Το παγκόσμιο τοπίο ψηφιακών απειλών είναι σύνθετο και περιλαμβάνει, όχι μόνο ψηφιακούς εγκληματίες που αναζητούν οικονομικό όφελος, αλλά επίσης και κράτη-έθνη και hactivists. Καταρχάς, εκστρατείες που έμοιαζαν να είναι μεμονωμένα περιστατικά - για παράδειγμα η ληστεία της τράπεζας στο Μπανγκλαντές – ήταν μόνο το κερασάκι στην τούρτα. Ανά πάσα στιγμή λαμβάνουν χώρα εκατοντάδες, αν όχι χιλιάδες, άγνωστες επιθέσεις. Τα «αρπακτικά» ποτέ δεν κοιμούνται – οπότε ούτε και οι κυνηγοί απειλών», έτσι εξηγεί ο Costin Raiu, Director της GReAT, την «πείνα» της ομάδας του για νέες ανακαλύψεις.
GReAT experts currently monitor over a hundred threat actors, as well as sophisticated malicious actions targeting commercial and government organizations in more than 80 countries. After conducting research, the company's experts created reports that help organizations "hunt" for malware by providing them with forensic data.
Several of the investigations undertaken by Kaspersky Lab turned into joint operations between GReAT and global organizations such as INTERPOL and Europol, national and regional police authorities such as the City of London Police and the National High Tech Crime Unit (NHTCU) of the Netherlands police service, while several global groups such as Computer Emergency Response Teams (CERTs) also helped. During the investigations, the company's researchers provided their technical expertise on issues related to malware analysis, infrastructure management and control support, and exploit methods.
"I may be a manager, but in fact I am still a security researcher. I'm still moving from the need to get there first, before anyone else. My personal field of interest includes APT attacks, exploits, complex threats, and almost anything that is popular at any given time, "added Costin Raiu.
The GReAT in Person website is an introduction to, but also a gateway to, the company's Threat Information Services, designed to respond to the more frequent demands of large corporations, government agencies, and law enforcement agencies involved in digital crime.
It is now clear that organizations need more than just a simple protection on their terminal devices to stay safe in the increasingly complex and ever evolving landscape of digital threats. This is why Kaspersky Lab has set up a service Reporting Report for APT Attacks (PDF), which provides customized reports on specific aspects of the threat landscape, as well as direct, dramatic reports of the latest and most advanced threats. They argue the organizations with an understanding of the scene of the threats and reveal the actions they need to take.
Also, GReAT supports one Digital Security Training (PDF) including a workforce awareness program, as well as training in Basic Digital Security Principles, Digital Crime Information, Malware Analysis / Reverse Engineering.
