Kaspersky Lab has detected a large number of malicious emails being sent in bulk targeting government and industrial institutions in Russia. According to the company’s press service, dozens of organizations were subjected to attacks that occurred in two waves. writes about this TASS.
Kaspersky Lab discovered the threat at the beginning of summer. Emails containing malicious archives were sent on behalf of a fictitious “financial institution.” The archive was running a script that attempted to access data on infected devices. The script aimed to collect screenshots, documents, passwords from browsers, and even information from the clipboard.
A second wave of mail was detected in mid-August. Researchers reported that the attackers made some changes to their systems, but the infection chain and downloader script remained unchanged. It is unclear whether any organizations were harmed as a result of these two waves of mail.
In light of the discovery of such a threat, the global cyber incident response team “Kaspersky GERT” reminded that phishing emails are one of the most common ways for attackers to infiltrate the infrastructure. The team warned about the importance of paying attention to questionable details, even in business correspondence.
Formerly cyber expert at Kaspersky Lab said About the virus creation service according to the instructions.