Analyzing the Earth Kurma APT Campaign: Tactics, Regional Impact, and Cybersecurity Mitigation Strategies in Southeast Asia
This paper analyzes the Earth Kurma Advanced Persistent Threat (APT) campaign, active since 2020, targeting Southeast Asia’s government and telecommunications sectors. It employs custom malware (KRN- RAT, MORIYA rootkit), kernel-level persistence, and cloud-based exfiltration via Dropbox and OneDrive. We examine its tactics, evaluate its impact on national security and infrastructure, and propose mitigation strategies with […]