Cylance SPEAR has uncovered a long-standing campaign targeting numerous critical and secure industries spread across Japan, South Korea, the United States, Europe, and several other Southeast Asian countries. Attack telemetry indicates Operation Dust Storm has migrated from more traditional government and defense-related intelligence targets to exclusively seek out organizations involved in Japanese critical infrastructure and resources. The group’s escalating activities, along with their choice of targets, obligates SPEAR to share this report. SPEAR believes attacks of this nature on companies involved in Japanese critical infrastructure and resources are ongoing and likely to continue to escalate in the future.
2015 Energy Industry Cybersecurity Report
Strategic Cybersecurity: A Toolkit for Prioritizing, Coordinating, and Transforming Your Cybersecurity Program