#coldriver

[ follow ]
#norobot #clickfix-lures #malware-development #information-stealing #clickfix #baitswitch #simplefix
Information security
fromThe Hacker News
16 hours ago

Google Identifies Three New Russian Malware Families Created by COLDRIVER Hackers

Russia-linked COLDRIVER rapidly evolved multiple malware families (NOROBOT, YESROBOT, MAYBEROBOT) and changed tactics to deploy credential- and info-stealing malware via ClickFix lures.
fromThe Hacker News
3 weeks ago

New COLDRIVER Malware Campaign Joins BO Team and Bearlyfy in Russia-Focused Cyberattacks

COLDRIVER, also tracked as Callisto, Star Blizzard, and UNC4057, is the moniker assigned to a Russia-linked threat actor that's known to target a wide range of sectors since 2019. While early campaign waves were observed using spear-phishing lures to direct targets to credential harvesting pages, the group has been fleshing out its arsenal with custom tools like SPICA and LOSTKEYS, which underscores its technical sophistication.
Information security
[ Load more ]