Video | Business Headlines | Internet | Science | Scientific Ethics | Technology | Search


Buckeye group used Equation Group tools pre-Shadow Brokers

Symantec Threat Intelligence: Buckeye attack group used Equation Group tools pre-Shadow Brokers leak

Today, Symantec released new research revealing the Buckeye (aka APT3 and Gothic Panda) attack group was using Equation Group tools to gain persistent access to target organisations at least a year prior to the Shadow Brokers leak. The variants of the Equation Group tools used by Buckeye appear to be newer and modified compared to those released by Shadow Brokers.

This marks the first time Symantec has seen a case—long referenced in theory—of an attack group recovering otherwise unknown exploits and tools used against them to subsequently attack others.

Of note, Buckeye’s use of Equation Group tools also involved the exploit of a previously unknown Windows zero-day vulnerability that Symantec discovered (which has since been patched by Microsoft).

While Buckeye appeared to cease operations in mid-2017 and three alleged members of the group were indicted by the U.S. Department of Justice in November 2017, the Equation Group tools associated with Buckeye specifically continued to be used in attacks until late 2018.

Symantec’s full research can be found here.

© Scoop Media

Business Headlines | Sci-Tech Headlines


Non-Giant Fossil Disoveries: Scientists Discover One Of World’s Oldest Bird Species

At 62 million-years-old, the newly-discovered Protodontopteryx ruthae, is one of the oldest named bird species in the world. It lived in New Zealand soon after the dinosaurs died out. More>>

Rural Employers Keen, Migrants Iffy: Employment Visa Changes Announced

“We are committed to ensuring that businesses are able to get the workers they need to fill critical skills shortages, while encouraging employers and regions to work together on long term workforce planning including supporting New Zealanders with the training they need to fill the gaps,” says Iain Lees-Galloway. More>>


Marsden Pipeline Rupture: Report Calls For Supply Improvements, Backs Digger Blame

The report makes several recommendations on how the sector can better prevent, prepare for, respond to, and recover from an incident. In particular, we consider it essential that government and industry work together to put in place and regularly practise sector-wide response plans, to improve the response to any future incident… More>>


Oil Scare: Trump Authorises Use Of Emergency Crude Stockpile

The New Zealand dollar fell against the US dollar after President Donald Trump authorised the use of the country's emergency crude stockpile after the weekend attack on Saudi Arabia’s major oil facilities. More>>