NCCC research: Number of russian cyberattacks using malware has increased
NCSCC analyzed the surge in attacks by Russian cybercriminals using Smokeloader malware.
Since May of this year, Ukrainian financial and government organizations have been targeted by the multifaceted malware, whose functionality includes methods of anti-analysis, data theft and remote control.
Attackers use financial topics in their campaigns to lure and deceive victims. They also use a network infrastructure dominated by Russian domain registrars, which indicates the geographical origin of the cybercriminals.
The threat landscape in Ukraine has thus evolved into arena, with financially motivated cybercriminals joining the fray alongside state-sponsored actors.