Russian-speaking cybercrime – Page 3

Zebrocy’s Multilanguage Malware Salad

Posted on June 3, 2019 by GReAT

Zebrocy is Russian speaking APT that presents a strange set of stripes. Essentially, at our SAS2019 presentation, we publicly provided original insights on Zebrocy and their characteristics for the first time, based on five years of research and private reports on this group. Continue reading Zebrocy’s Multilanguage Malware Salad→

APT trends report Q1 2019

Posted on April 30, 2019 by GReAT

This is our latest summary of APT activity, based on our threat intelligence research and provide a representative snapshot of what we have published and discussed in greater detail in our private APT reports. It aims to highlight the significant events and findings that we feel people should be aware of. Continue reading APT trends report Q1 2019→

A predatory tale: Who’s afraid of the thief?

Posted on March 11, 2019 by GReAT

Predator is a data stealer developed by Russian-speaking individuals. It’s being sold cheaply on Russian forums and has been detected many times in the wild. Continue reading A predatory tale: Who’s afraid of the thief?→

Octopus-infested seas of Central Asia

Posted on October 15, 2018 by GReAT

For the last two years we have been monitoring a Russian-language cyberespionage actor that focuses on Central Asian users. We named the actor DustSquad and have provided reports on four of their campaigns. In this blogpost we cover a malicious program for Windows called Octopus that mostly targets diplomatic entities. Continue reading Octopus-infested seas of Central Asia→

A look into the Russian-speaking ransomware ecosystem

Posted on February 14, 2017 by Anton Ivanov

In other words, crypto ransomware is a fine tuned, user friendly and constantly developing ecosystem. In the last few years we, at Kaspersky Lab, have been monitoring the development of this ecosystem. This is what we’ve learned. Continue reading A look into the Russian-speaking ransomware ecosystem→

Trust me, I have a pen

Posted on October 11, 2016 by GReAT

Earlier today we became aware of a malicious website delivering Petya through the Hunter exploit kit. While there is nothing special about yet another exploit kit page, this one caught our attention because it mimics the index page of our sinkhole systems. Continue reading Trust me, I have a pen→

The Hunt for Lurk

Posted on August 30, 2016 by Ruslan Stoyanov

In June, 2016, the Russian police arrested the alleged members of the criminal group known as Lurk. The police suspected Lurk of stealing nearly three billion rubles. The story of Lurk gives some idea of the amount of work that has to be done to obtain enough evidence to arrest and prosecute suspects. Continue reading The Hunt for Lurk→