BI.ZONE Cloud Werewolf spearphishes for government employees in Russia and Belarus with fake spa vouchers… The attackers use phishing emails with seemingly legitimate documents and evade defenses by hosting the malicious payload on a remote… 5 min read·Mar 29, 2024 -- --
BI.ZONE Fluffy Wolf sends out reconciliation reports to sneak into corporate infrastructures The group has adopted a simple yet effective approach to gain initial access: phishing emails with an executable attachment. This way… 5 min read·Mar 19, 2024 -- --
BI.ZONE Mysterious Werewolf hits defense industry with new RingSpy backdoor The criminal group gains initial access through phishing emails with a compressed executable that unleashes RingSpy, an original remote … 5 min read·Mar 13, 2024 -- --
BI.ZONE Scaly Wolf uses White Snake stealer against Russian industry The group, which has been on the radar since the summer of 2023, conducted several phishing campaigns using Russian regulatory body and law… 10 min read·Feb 2, 2024 -- --
BI.ZONE A striking resemblance: Gambling Hyena and Twelfth Hyena clusters compared What is common between two hacktivist groups attacking the Russian government sector. 4 min read·Dec 28, 2023 -- --
BI.ZONE Rare Wolf preys on sensitive data using fake 1C:Enterprise invoices as lure How adversaries create diversions and stay invisible 5 min read·Nov 29, 2023 -- --
BI.ZONE Sticky Werewolf attacks public organizations in Russia and Belarus Our cyber threat intelligence experts discover a new group that uses presumably legitimate software to interfere with government… 5 min read·Oct 13, 2023 -- --
BI.ZONE White Snake spotted in emails: the stealer was disguised as official state requirements Any threat actor with $140 can utilize this malware. For that price, they get a complete end-to-end attack kit: i) a builder to create… 6 min read·Aug 8, 2023 -- --
BI.ZONE Hacker group Quartz Wolf leverages legitimate software for cyberattacks Cybercriminals have modified the standard “phishing email + remote access” combo with an unexpected hook — the leveraging of legitimate… 3 min read·Jul 17, 2023 -- --
BI.ZONE Hunting the hunter: BI.ZONE traces the footsteps of Red Wolf The cyber spies who had been on hiatus since 2022 make a surprising comeback. Red Wolf has been spotted penetrating company infrastructures… 4 min read·Jun 28, 2023 -- --