PARETO: A Technical Analysis

Share Post:

HUMAN’s Satori Threat Intelligence and Research Team has been investigating a CTV-centric botnet—dubbed PARETO—since the first half of 2020. The botnet took advantage of the shift to digital accelerated by the pandemic by hiding in the noise in order to trick advertisers and technology platforms into believing that ads were being shown on CTVs. Today, we’re revealing technical details of PARETO’s inner workings in an effort to help the industries impacted better understand the nature of the threat and how to prevent it from recurring in the future.REFERENCES:https://www.humansecurity.com/blog/pareto-a-technical-analysishttps://www.circleid.com/posts/20210707-are-there-more-properties-connected-to-the-pareto-botnet?mc=socialmediaTAGS:PARETO, Botnet, Android, Smart TVMALWARE FAMILY:ParetoATT&CK IDS:T1566 – Phishing, T1036 – Masquerading, T1104 – Multi-Stage Channels, T1102 – Web Service, T1583.005 – Botnet, T1037 – Boot or Logon Initialization Scripts, T1537 – Transfer Data to Cloud Account

Stay Informed

More Insights

Free Security Risk Assessment

The reliability of your cloud security is impacted by hardware and software vulnerabilities, poor security hygiene, insider risks and unexpected downtime. Receive a Free Security Risk Assessment when you schedule direct.

RBC creates personalized offers while protecting data privacy with Azure confidential computing

With Microsoft @Azure confidential computing, Royal Bank of Canada delivers real-time, personalized offers while protecting client data and confidentiality. How does your organization protect data and confidentiality?

If you’re looking for a better way, watch this video and when you’re done, contact a @Microsoft Azure confidential computing expert from TeraCloud, Inc. who can help your organization share and aggregate data more efficiently and intelligently.

#Azure