PARETO: A Technical Analysis

Share Post:

HUMAN’s Satori Threat Intelligence and Research Team has been investigating a CTV-centric botnet—dubbed PARETO—since the first half of 2020. The botnet took advantage of the shift to digital accelerated by the pandemic by hiding in the noise in order to trick advertisers and technology platforms into believing that ads were being shown on CTVs. Today, we’re revealing technical details of PARETO’s inner workings in an effort to help the industries impacted better understand the nature of the threat and how to prevent it from recurring in the future.REFERENCES:https://www.humansecurity.com/blog/pareto-a-technical-analysishttps://www.circleid.com/posts/20210707-are-there-more-properties-connected-to-the-pareto-botnet?mc=socialmediaTAGS:PARETO, Botnet, Android, Smart TVMALWARE FAMILY:ParetoATT&CK IDS:T1566 – Phishing, T1036 – Masquerading, T1104 – Multi-Stage Channels, T1102 – Web Service, T1583.005 – Botnet, T1037 – Boot or Logon Initialization Scripts, T1537 – Transfer Data to Cloud Account

Stay Informed

More Insights

New Zealand Moves to a Cloud-Based Identity Solution for its 4.9 Million Residents

How can you use advanced authentication and risk-based adaptive access policies to protect data without compromising user experience? TeraCloud, Inc. recommends learning from the experience of New Zealand’s Department of Internal Affairs. Get the story on how the @Microsoft customer simplified security with a cloud-based identity solution.

3 Key Resources to Accelerate Your Passwordless Journey

When it comes to password use, the risks outweigh the benefits. It’s time your organization started looking at password alternatives that are both highly secure and convenient. Read the @Microsoft blog and contact TeraCloud, Inc. for a free consultation from one of our security experts.
#MicrosoftSecurity #Passwordless

Amedsys Prescribes Microsoft Security and a Password-Free Solution to Support Clinical Teams

Amedisys Home Health streamlines security with a password-free solution. How would security improve at your organization if you could free workers from passwords? Read the customer story to learn how @Microsoft Security saves this healthcare and hospice health provider time and money while strengthening security. When you’re done reading, contact a @Microsoft Security expert from TeraCloud, Inc. for a free consultation.

#Passwordless