Google Says Russian Espionage Crew Behind New Malware Campaign (techcrunch.com) 10
Google researchers say they have evidence that a notorious Russian-linked hacking group -- tracked as "Cold River" -- is evolving its tactics beyond phishing to target victims with data-stealing malware. From a report: Cold River, also known as "Callisto Group" and "Star Blizzard," is known for conducting long-running espionage campaigns against NATO countries, particularly the United States and the United Kingdom. Researchers believe the group's activities, which typically target high-profile individuals and organizations involved in international affairs and defense, suggest close ties to the Russian state. U.S. prosecutors in December indicted two Russian nationals linked to the group.
Google's Threat Analysis Group (TAG) said in new research this week that it has observed Cold River ramping up its activity in recent months and using new tactics capable of causing more disruption to its victims, predominantly targets in Ukraine and its NATO allies, academic institutions and non-government organizations. These latest findings come soon after Microsoft researchers reported that the Russia-aligned hacking group had improved its ability to evade detection. In research shared with TechCrunch ahead of its publication on Thursday, TAG researchers say that Cold River has continued to shift beyond its usual tactic of phishing for credentials to delivering malware via campaigns using PDF documents as lures.
Google's Threat Analysis Group (TAG) said in new research this week that it has observed Cold River ramping up its activity in recent months and using new tactics capable of causing more disruption to its victims, predominantly targets in Ukraine and its NATO allies, academic institutions and non-government organizations. These latest findings come soon after Microsoft researchers reported that the Russia-aligned hacking group had improved its ability to evade detection. In research shared with TechCrunch ahead of its publication on Thursday, TAG researchers say that Cold River has continued to shift beyond its usual tactic of phishing for credentials to delivering malware via campaigns using PDF documents as lures.
No longer even news (Score:1)
Google saying that Russia is making malware is the sort of thing that happens monthly, at least. What makes this newsworthy in 2024? Does it use AI? Does it target that gigantic orb in Las Vegas? Why should I care at all about this? Russia has created numerous malware programs. That's pretty standard info these days.
No Russians have anything to say about this today? (Score:2)
Come on you turds, I know you're reading this and scrambling to come up with your best spin. Give it your best shot.
Re: (Score:3)
Re: (Score:3)
I literally clicked to see their spam. A little too early I guess.
Best effort so far goes to Seven Spirals who went out of his way to tell everyone Russia is definitely winning in Ukraine.
The cold war never really ended... (Score:2)