CYBERSEC 2022 uses cookies to provide you with the best user experience possible. By continuing to use this site, you agree to the terms in our Privacy Policy. I Agree
SPEAKER
Leon Chang
TeamT5 Cyber Threat Intelligence Team / Cyber Security Researcher
Leon Chang is a Cyber Security Researcher at TeamT5 CTI team. His major areas of research include APT campaign tracking and malware analysis. He has participated in information security diagnosis services for government and financial institutions as well as research on vulnerabilities in IoT devices in the past. He has also been a speaker at international conferences, including Black Hat Asia, Japan Security Analyst Conference (JSAC) 2021.
Speech
SEP 22
#
Threat Intelligence: APT41's New Subgroup? Dissecting Chinese APT "Tianwu" Latest Operations in the APAC Region
APT41 (aka Winnti, Amoeba) is a notorious Chinese APT group. In recent years, TeamT5 CTI team observes that the group has developed into multiple subgroups and it has posed a serious threat to companies in the APAC region. In this talk, we will cover an emerging Chinese APT group named "Tianwu," which was first spotted in 2020. We found that there are several TTPs overlap between Tianwu and APT41. Tianwu's proprietary tool, Pangolin8RAT, is a modular trojan that supports at least 8 communication protocols. Our talk will also provide our outlook on the group's future development as well as actionable intelligence for enterprises.