Security Affairs

FEBRUARY 3, 2023

Russia-linked threat actor Gamaredon employed new spyware in cyber attacks aimed at public authorities and critical information infrastructure in Ukraine. The government experts pointed out that the threat actor continues to evolve its TTPs to avoid detection. lnk” (“Request of the Security Service of Ukraine 12-1-125 dated 09.01.2023.lnk”).

Malware 87

Malware Spyware DNS Government 87

Security Affairs

MARCH 21, 2022

Ukraine CERT (CERT-UA) warns of spear-phishing ??attacks The Government Team for Response to Computer Emergencies of Ukraine (CERT-UA) warns of spear-phishing messages conducted by UAC-0035 group (aka InvisiMole) against Ukrainian state bodies. The messages use an archive named “501_25_103.zip”,

Spyware 83

Spyware DNS Phishing Government 83

Security Affairs

APRIL 21, 2019

Scranos – A Cross Platform, Rootkit-Enabled Spyware rapidly spreading. Analyzing OilRigs malware that uses DNS Tunneling. Google is going to block logins from embedded browsers against MitM phishing attacks. Hacker broke into super secure French Governments Messaging App Tchap hours after release.

Computers and Electronics 62

Computers and Electronics Spyware Data breaches Advertising 62

SecureList

AUGUST 30, 2023

Tomiris called, they want their Turla malware back We first reported Tomiris in September 2021, following our investigation into a DNS hijack against a government organization in the CIS (Commonwealth of Independent States). The attribution of tools used in a cyber-attack can sometimes be a very tricky issue.

Malware 73

Malware Spyware Cryptocurrency Government 73

eSecurity Planet

FEBRUARY 16, 2021

Attackers often use botnets to send out spam or phishing campaigns to carry out distributed denial of service (DDoS) attacks. Additional features of botnets include spam, ad and click fraud, and spyware. Phishing and Social Engineering. More targeted efforts at specific users or organizations are known as spear phishing.

Malware 105

Malware Adware Spyware Antivirus 105

SecureList

DECEMBER 1, 2023

The targets included government, military, critical infrastructure and IT organizations in Ukraine, Romania, Poland, Jordan, Turkey, Italy and Slovakia. However, they included an additional module that constantly monitored the messenger and sent data to the spyware creator’s C2 server. org domain.

Malware 91

Malware Ransomware Encryption Energy and Utilities 91

SecureList

MAY 27, 2022

The group uses various malware families, including Wroba, and attack methods that include phishing, mining, smishing and DNS poisoning. Subsequently, DDoS attacks hit some government websites. One of the things you can do to protect yourself from advanced mobile spyware is to reboot your device on a daily basis.

Phishing 103

Phishing Spyware Firmware Malware 103