Security News > 2022 > May > Russian hackers perform reconnaissance against Austria, Estonia
In a new reconnaissance campaign, the Russian state-sponsored hacking group Turla was observed targeting the Austrian Economic Chamber, a NATO platform, and the Baltic Defense College.
This discovery comes from cybersecurity firm Sekoia, which built upon previous findings of Google's TAG, which has been following Russian hackers closely this year.
Sekoia used this information to investigate further and found that Turla targeted the federal organization in Austria and the military college in the Baltic region.
Turla is a Russian-speaking cyber-espionage threat group that is believed to have strong ties to Russian Federation's FSB service.
More recently, Turla was seen using a variety of backdoors and remote access trojans against EU governments and embassies and important research facilities.
The Word file does not contain any malicious macros or behavior, making Sekoia believe that the PNG is used to perform reconnaissance.
News URL
Related news
- Microsoft: Russian hackers accessed internal systems, code repositories (source)
- Russian Hackers May Have Targeted Ukrainian Telecoms with Upgraded 'AcidPour' Malware (source)
- Russian hackers target German political parties with WineLoader malware (source)
- Russian Hackers Use 'WINELOADER' Malware to Target German Political Parties (source)
- Russian Sandworm hackers pose as hacktivists in water utility breaches (source)
- Russian Sandworm hackers targeted 20 critical orgs in Ukraine (source)
- Russian hackers’ custom tool exploits old Windows Print Spooler flaw (CVE-2022-38028) (source)