LightSpy's dark evolution. [Research Saturday]

CyberWire Daily

N2K Networks, Inc.

Daily News, Tech News, News, Technology

4.6 • 1K Ratings

🗓️ 25 January 2025

⏱️ 24 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

This week, we are joined by Ismael Valenzuela, VP of Threat Research & Intelligence, and Jacob Faires, Principal Threat Researcher, from Blackberry discussing the team's work on "LightSpy: APT41 Deploys Advanced DeepData Framework In Targeted Southern Asia Espionage Campaign." In April 2024, BlackBerry uncovered a significant evolution of the LightSpy malware campaign, attributed to Chinese cyber-espionage group APT41. The newly introduced DeepData framework, a modular Windows-based surveillance tool, expands data theft capabilities with 12 specialized plugins for tasks like communication surveillance, credential theft, and system intelligence gathering. The campaign targets a wide range of communication platforms, including WhatsApp, Signal, and WeChat, with advanced techniques for monitoring and stealing sensitive information from victims across the Asia-Pacific region. The research can be found here: LightSpy: APT41 Deploys Advanced DeepData Framework In Targeted Southern Asia Espionage Campaign Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	You're listening to the Cyberwire Network, powered by N2K.
0:09.7	Hey, everybody, Dave here. Have you ever wondered where your personal information is lurking online?
0:19.1	Like many of you, I was concerned about my data being sold
0:22.8	by data brokers. So I decided to try, delete me. I have to say, delete me is a game changer.
0:29.9	Within days of signing up, they started removing my personal information from hundreds of data brokers.
0:36.3	I finally have peace of mind knowing my data privacy
0:39.4	is protected. Delete Me's team does all the work for you with detailed reports so you know exactly
0:45.7	what's been done. Take control of your data and keep your private life private by signing up for
0:51.5	Delete Me. Now at a special discount for our listeners. Today, get 20%
0:56.6	off your DeleteMe plan when you go to join deleteme.com slash N2K and use promo code N2K at checkout.
1:05.7	The only way to get 20% off is to go to join deleteme.com slash N2k and enter code n2k at checkout. That's join
1:14.5	deleteme.com slash n2k code n2k.
1:18.2	Hello everyone and welcome to the CyberWires Research Saturday.
1:34.1	I'm Dave Bittner, and this is our weekly conversation with researchers and analysts
1:38.8	tracking down the threats and vulnerabilities,
1:41.6	solving some of the hard problems and protecting ourselves in a rapidly evolving cyberspace.
1:47.0	Thanks for joining us.
1:49.0	Well, so we're actively monitoring a lot of different threat actors and campaigns around the world,
2:00.0	but we follow with special interest what's happening in Southeast Asia,
2:04.9	and especially what's coming from Chinese actors.
2:09.1	Our guest today are Ismail Valenzuela, VP of Threat Research and Intelligence,
2:14.2	and Jacob Ferris, principal threat researcher from Blackberry,
	...

Transcript will be available on the free plan in -20 days. Upgrade to see the full transcript now.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.