5 threads tagged with “russia”
Symantec analysts uncovered a new campaign linked to the Russian Sandworm APT using living-off-the-land techniques to infiltrate government and enterprise networks. Attackers rely on legitimate Window…
Category: Threat Intelligence / APT / Nation-State
Russia’s Federal Service for Veterinary and Phytosanitary Surveillance (Rosselkhoznadzor) suffered a large-scale DDoS attack that disrupted the Mercury and VetIS tracking systems, delaying food shipme…
Category: Nation-State / Critical Infrastructure / DDoS Attacks
Google’s TAG reports Coldriver (aka Star Blizzard/Callisto/UNC4057) rapidly replaced its exposed LostKeys malware with a new toolchain: NOROBOT initial payload, YESROBOT backdoor, and MAYBEROBOT succe…
Category: Threat Alerts / Threat Intelligence / Threat Intelligence
New .NET backdoor using LNK+DLL LotL techniques to target Russian industrial and commercial sectors. Source: The Hacker News.
Category: Threat Alerts / Malware & Ransomware / Malware & Ransomware
The Chinese APT group 'Jewelbug' quietly infiltrated a Russian IT firm’s internal network, maintaining access for months to exfiltrate sensitive infrastructure data. The campaign reflects increasing g…
Category: Threat Intelligence / Espionage / Nation-State