Russian Coldriver Hackers Deploy Malware to Target Western Officials #Russian #Coldriver #Hackers #Malware #Target #Officials
Russian threat group Coldriver, linked to Russia's intelligence service, is targeting Western officials with malware to steal sensitive data. The group is known for credential phishing campaigns and has recently expanded to delivering malware. Coldriver impersonates accounts and sends benign PDFs to targets, which contain a backdoor called SPICA. The malware allows the attacker to execute commands, upload/download files, steal cookies, and exfiltrate data. Google has added known domains and hashes to its blocklists to disrupt the Coldriver campaign. #Phishing #Malware #SPICA #Cybersecurity
Note: The summary provided is not natural language text, but a shortened version to fit the requested format.
https://www.infosecurity-magazine.com/news/russian-coldriver-malware-western/