Novetta Solutions has released a new report that details the existence of a foreign cybersecurity threat and action steps compiled by industry on how to remediate and counter an attack from the group.
The action items included a concerted effort from a coalition of security solutions companies to take down associated malware families from thousands of affected machines.
According to the report, the threat actor, dubbed Axiom by the security coalition, was determined to have installed these data exfiltration and other tools in a manner consistent with its tactics as a possibly state-sponsored spy group.
Operation SMN: Axiom Threat Actor Group Report is one of several reports that Novetta published, highlighting months of coordination among various stakeholders to execute coalition missions.
The Novetta-led cybersecurity coalition includes Cisco, FireEye and Microsoft.
“Through this initiative, we provided tools and technical assistance via the coalition on a large scale that will not only better protect coalition customers but also force Axiom to use new exploits and thereby spend more resources,” said Novetta CEO Peter B. LaMontagne.
“Coalescing multiple industry perspectives and technical capabilities provided the highest level of visibility we have ever seen in such an effort and established the foundation to deliver the intended effects against a threat of this nature.”