New APT Report: The Unknown Knowns
via the erudite Catalin Cimpanu (formerly reporting at BleepingComputer, now writing at ZDNet's ZDNet's ZeroDay blog) comes well-crafted and detailed reporting, targeting the recent identification of APT group called-out in the 2017 Shadow Brokers data dump (well known as the Lost in Translation dump)... Today's Must Read.
"Juan Andres Guerrero-Saade, a former security researcher at Kaspersky and Google, says that after identifying files linked to this signature, he believes signature #37 is actually for tracking a new hacking group altogether, which he believes might be based in Iran." - via Catalin Cimpanu writing at ZDNet's ZeroDay blog