Security News > 2020 > July > Evilnum Group Targets Fintech Companies in Europe
For the past two years, a threat group tracked as Evilnum has been observed targeting financial technology companies, mainly ones located in the European Union and the U.K., ESET reports.
Golden Chickens components used in Evilnum attacks are from the TerraLoader family.
The Cobalt Group is also known to leverage Golden Chickens tools, but the security researchers note that the three adversaries are different groups.
Evilnum also relies on various other post-compromise components, including Python-based tools, and publicly available tools.
"This group targets fintech companies that provide trading and investment platforms for their customers. The targets are very specific and not numerous. This, and the group's use of legitimate tools in its attack chain, have kept its activities largely under the radar. [] We think this and other groups share the same MaaS provider, and the Evilnum group cannot yet be associated with any previous attacks by any other APT group," ESET concludes.