Kaspersky's report details the activities of the cyber threat group Paper Werewolf, which has been targeting various Russian sectors, namely media, telecommunications, and energy, since mid-2024. The group uses a new implant known as PowerModul alongside a variety of other sophisticated tools and malware, including PowerRAT. Their attack methodology often begins with phishing emails leading to malware deployment, resulting in espionage as well as disruptive strategies like altering employee account credentials. Papers like Kaspersky signal a growing trend of cyber threats that go beyond mere data theft.
Paper Werewolf, targeting Russian sectors, uses advanced malware tactics including PowerModul and PowerRAT, demonstrating a significant shift towards disruptive cyber activities.
The threat actor employs phishing tactics to deliver malicious payloads that can not only spy but also disrupt, altering employee credentials to enhance the severity of the intrusion.
Collection
[
|
...
]