Explore the tactics and operations of OceanLotus, one of the most advanced and pervasive threat groups active today, in this 51-minute RSA Conference talk. Delve into how this sophisticated group manages tracking, exploitation, and command and control operations globally. Discover the likelihood of being unknowingly tracked by OceanLotus and learn how digital surveillance campaigns evolve into full-fledged cyberespionage operations. Gain insights into unexpected origins of advanced persistent threats, examine how APT groups leverage government and NGO websites for targeted attacks, and understand the abuse of legitimate cloud services to bypass security controls. Uncover the group's massive tracking campaign, their use of Scanbox framework, and compromises of high-profile targets like ASEAN and the Philippines National Security Council. Analyze OceanLotus' evolving techniques, including brand impersonation, targeting whitelists, and changes in code and infrastructure. Suitable for those with a general understanding of APT threats, exploits, and spear phishing. Read more