Security News > 2024 > January > Russian COLDRIVER Hackers Expand Beyond Phishing with Custom Malware
2024-01-18 14:49
The Russia-linked threat actor known as COLDRIVER has been observed evolving its tradecraft to go beyond credential harvesting to deliver its first-ever custom malware written in the Rust programming language. Google's Threat Analysis Group (TAG), which shared details of the latest activity, said the attack chains leverage PDFs as decoy documents to trigger the infection sequence. The lures are
News URL
https://thehackernews.com/2024/01/russian-coldriver-hackers-expand-beyond.html
Related news
- Russian Hackers Deploy HATVIBE and CHERRYSPY Malware Across Europe and Asia (source)
- Russian-Linked Hackers Target Kazakhstan in Espionage Campaign with HATVIBE Malware (source)
- Chinese hackers target Linux with new WolfsBane malware (source)
- North Korean Hackers Steal $10M with AI-Driven Scams and Malware on LinkedIn (source)
- Salt Typhoon hackers backdoor telcos with new GhostSpider malware (source)
- Faraway Russian hackers breached US organization via Wi-Fi (source)
- Chinese Hackers Use GHOSTSPIDER Malware to Hack Telecoms Across 12+ Countries (source)
- Firefox and Windows zero-days exploited by Russian RomCom hackers (source)
- APT-C-60 Hackers Exploit StatCounter and Bitbucket in SpyGlace Malware Campaign (source)
- Wanted Russian Hacker Linked to Hive and LockBit Ransomware Arrested (source)