The article discusses a cyber threat actor dubbed Sticky Werewolf, which has been linked to targeted malware attacks mainly in Russia and Belarus. This group, monitored by Kaspersky under the name Angry Likho, utilizes a sophisticated attack strategy involving spear-phishing emails and a unique implant to deploy the Lumma Stealer malware. The attacks focus on employees of large organizations, particularly government agencies, and use fluent Russian in their bait files. The group resonates with previous attacks but operates with a more compact infrastructure and specific targeting.
The threat actor known as Sticky Werewolf has been linked to targeted attacks primarily in Russia and Belarus with the aim of delivering the Lumma Stealer malware.
Cybersecurity company Kaspersky is tracking the activity under the name Angry Likho, which it said bears a 'strong resemblance' to Awaken Likho.
The attackers have been found to mainly single out organizations in Russia and Belarus, with hundreds of victims identified in the former.
Previous intrusion activities associated with the group have leveraged phishing emails as a conduit to distribute various malware families such as NetWire and Rhadamanthys.
Collection
[
|
...
]