Recent findings from Kaspersky indicate that two cyber threat groups, Head Mare and Twelve, have potentially allied to target Russian entities. Kaspersky noted that Head Mare utilized tools previously linked to Twelve, implying tactical collaboration. Both groups are known for their distinct approaches: Head Mare exploits vulnerabilities like CVE-2023-38831 in WinRAR to gain initial access, while Twelve has carried out destructive attacks using wipers and encryption tools. The ongoing analysis of their activities also revealed the use of overlapping tools, suggesting an intricate web of cyber threats targeting Russia.
Kaspersky's latest analysis indicates potential collaboration between two threat clusters, Head Mare and Twelve, targeting Russian entities using advanced attack techniques.
Head Mare's attacks have exploited vulnerabilities like CVE-2023-38831 in WinRAR and utilized new tools for accessing and compromising Russian organizations.
Collection
[
|
...
]