The art of information gathering. [Research Saturday]

Published: April 20, 2024, 7 a.m.

Greg Lesnewich, senior threat researcher at Proofpoint, sits down to discuss "From Social Engineering to DMARC Abuse: TA427\u2019s Art of Information Gathering." Since 2023, TA427 has directly solicited foreign policy experts\xa0for their opinions on nuclear disarmament, US-ROK policies, and sanction topics via benign conversation starting emails.\xa0\nThe research states "While our researchers have consistently observed TA427 rely on social engineering tactics and regularly rotating its email infrastructure,\xa0in December 2023 the threat actor began to abuse lax Domain-based Message Authentication, Reporting and Conformance (DMARC) policies\xa0to spoof various personas and,\xa0in February 2024, began incorporating web beacons for target profiling."\nThe research can be found here:\nFrom Social Engineering to DMARC Abuse: TA427\u2019s Art of Information Gathering\n\nLearn more about your ad choices. Visit megaphone.fm/adchoices