HUMAN’s Satori Threat Intelligence and Research Team has been investigating a CTV-centric botnet—dubbed PARETO—since the first half of 2020. The botnet took advantage of the shift to digital accelerated by the pandemic by hiding in the noise in order to trick advertisers and technology platforms into believing that ads were being shown on CTVs. Today, we’re revealing technical details of PARETO’s inner workings in an effort to help the industries impacted better understand the nature of the threat and how to prevent it from recurring in the future.REFERENCES:https://www.humansecurity.com/blog/pareto-a-technical-analysishttps://www.circleid.com/posts/20210707-are-there-more-properties-connected-to-the-pareto-botnet?mc=socialmediaTAGS:PARETO, Botnet, Android, Smart TVMALWARE FAMILY:ParetoATT&CK IDS:T1566 – Phishing, T1036 – Masquerading, T1104 – Multi-Stage Channels, T1102 – Web Service, T1583.005 – Botnet, T1037 – Boot or Logon Initialization Scripts, T1537 – Transfer Data to Cloud Account
How have organizations adapted to the changing complexities of the workplace? Learn how your staff can maximize productivity in the virtual environment with #WindowsVirtualDesktop.