News

Russian-speaking cybercriminals committed a series of fishing attacks on embassies of European counties.

Cybercriminals attacked embassies of European countries in Italia, Liberia, Kenia and other countries after sending its employees fishing letters.

As report Check Point researchers, malware letters contained Microsoft Excel documents with headings «Military Financing Program» and “top secret” mark.

After activation of malware’s macros from the document were extracted two files. In particular, on the attacked system was downloaded malware library TeamViewer DLL (TV.DLL).


The infection chain

Intruders are supposedly Russians or at least Russian-speakers, this is obvious from accidentally left Cyrillic alphabet symbols and even whole documents on Russian.

However, it is unlikely that they pursue political motives and are “not political hackers”, consider Check Point specialists.

“It is hard to tell if there are geopolitical motives behind this campaign by looking solely at the list of countries it was targeting. Since it was not after a specific region and the victims came from different places in the world.”, — the Check Point press release says.

Government finance officials were among victims of these attacks, and CheckPoint consider this is not a co-incidence.

“They all appear to be handpicked government officials from several revenue authorities,” – reported experts of Check Point.

Specialists even managed to trace one of the criminals; he is famous on the Internet under the name EvaPiks and registered on several hackers’ and carders’ forums.

EvaPiks published instruction on committing described above attacks and even consulted on them. Considering involvement of intruders to carders’ society, researchers suggest they pursue financial interest.

Source: www.theverge.com

Polina Lisovskaya

I works as a marketing manager for years now and loves searching for interesting topics for you

Recent Posts

Remove News-bhexusa.xyz Pop-up Ads

About News-bhexusa.xyz News-bhexusa.xyz pop-ups can not open out of nowhere. If you have clicked on…

18 hours ago

Remove News-bhupotu.xyz Pop-up Ads

About News-bhupotu.xyz News-bhupotu.xyz pop-ups can not launch out of the blue. If you have clicked…

18 hours ago

Remove News-bhocime.info Pop-up Ads

About News-bhocime.info News-bhocime.info pop-ups can not open out of the blue. If you have actually…

18 hours ago

Remove You-hub.online Pop-up Ads

About You-hub.online You-hub.online pop-ups can not launch out of nowhere. If you have clicked on…

18 hours ago

Remove News-bhecudu.live Pop-up Ads

About News-bhecudu.live News-bhecudu.live pop-ups can not introduce out of the blue. If you have clicked…

18 hours ago

Remove News-bhiciwe.today Pop-up Ads

About News-bhiciwe.today News-bhiciwe.today pop-ups can not introduce out of the blue. If you have clicked…

18 hours ago