July 31, 2024 at 06:09AM
A new phishing campaign by the cyber espionage group XDSpy targeted companies in Russia and Moldova with the DSDownloader malware. XDSpy has previously targeted Eastern European and Balkan government agencies since 2011. The Russo-Ukrainian war has led to increased cyber attacks, with various threat actors targeting organizations in both countries.
From the meeting notes, it appears that several cyber espionage groups and threat actors have been targeting companies in Russia and Moldova. Notable findings include the activities of the cyber espionage group XDSpy, as well as the escalating cyber attacks following the onset of the Russo-Ukrainian war in 2022. Additionally, activities of pro-Ukrainian hacktivist groups targeting Russian entities have been observed, alongside warnings from the Computer Emergency Response Team of Ukraine about phishing attacks by a Belarusian threat actor named UAC-0057. Furthermore, a new campaign from the Russia-linked Turla group utilizing a malicious Windows shortcut (LNK) file has been discovered.
If you require further details or analysis on any specific points from the meeting notes, please let me know.