New Cavalry Werewolf Attack Hits Russian Agencies with FoalShell and StallionRAT

Image for article New Cavalry Werewolf Attack Hits Russian Agencies with FoalShell and StallionRAT
News Source : Internet

News Summary

  • Cybersecurity vendor BI.ZONE is tracking the activity under the moniker Cavalry Werewolf.
  • It's also assessed to have commonalities with clusters tracked as SturgeonPhisher, Silent Lynx, Comrade Saiga, ShadowSilk, and Tomiris.
  • In order to gain initial access, the attackers sent out targeted phishing emails disguising them as official correspondence from Kyrgyz government officials.
  • The main targets of the attacks were Russian state agencies, as well as energy, mining, and manufacturing enterprises.
A threat actor thats known to share overlaps with a hacking group called YoroTrooper has been observed targeting the Russian public sector with malware families such as FoalShell and StallionRAT.C [+3572 chars]

Must read Articles