PARETO: A Technical Analysis

Share Post:

HUMAN’s Satori Threat Intelligence and Research Team has been investigating a CTV-centric botnet—dubbed PARETO—since the first half of 2020. The botnet took advantage of the shift to digital accelerated by the pandemic by hiding in the noise in order to trick advertisers and technology platforms into believing that ads were being shown on CTVs. Today, we’re revealing technical details of PARETO’s inner workings in an effort to help the industries impacted better understand the nature of the threat and how to prevent it from recurring in the future.REFERENCES:https://www.humansecurity.com/blog/pareto-a-technical-analysishttps://www.circleid.com/posts/20210707-are-there-more-properties-connected-to-the-pareto-botnet?mc=socialmediaTAGS:PARETO, Botnet, Android, Smart TVMALWARE FAMILY:ParetoATT&CK IDS:T1566 – Phishing, T1036 – Masquerading, T1104 – Multi-Stage Channels, T1102 – Web Service, T1583.005 – Botnet, T1037 – Boot or Logon Initialization Scripts, T1537 – Transfer Data to Cloud Account

Stay Informed

More Insights

Security Threat Detection & Prevention Consultation

Protecting your infrastructure from adversaries is a constant battle. @Microsoft remains focused on protecting your Virtual Desktop and encourages you to book a free one-on-one discussion regarding threat detection and prevention with one of our experts.