Russian cyberspies target Android users with new spyware

December 13, 2024 at 12:49PM Russian cyberspies Gamaredon are using two Android spyware families, BoneSpy and PlainGnome, to target Russian-speaking individuals in former Soviet states. BoneSpy has been active since 2021, while PlainGnome emerged in 2024. Both malware types collect extensive data from mobile devices, highlighting Gamaredon’s evolved tactics in digital surveillance. **Meeting Takeaways:** 1. … Read more

Gamaredon Deploys Android Spyware “BoneSpy” and “PlainGnome” in Former Soviet States

December 12, 2024 at 09:51AM Gamaredon, a Russia-linked threat actor, has developed two Android spyware tools, BoneSpy and PlainGnome, targeting Russian-speaking victims in former Soviet states. These tools gather extensive data from infected devices. Their use marks the first instance of mobile-only malware in Gamaredon’s campaigns, which also includes attempts against NATO countries. ### Meeting … Read more

‘The Weirdest Trend in Cybersecurity’: Nation-States Returning to USBs

March 7, 2024 at 04:26PM Nation-state cyber threat groups are using USBs to infiltrate government and critical infrastructure. Check Point’s Maya Horowitz highlighted USBs as the primary infection vector for major threats, including China’s Camaro Dragon and Russia’s Gamaredon. Instances of USB attacks at a power company and a UK hospital underscore the danger. Organizations … Read more

Russian Cyber Espionage Group Deploys LitterDrifter USB Worm in Targeted Attacks

November 18, 2023 at 02:24AM Russian cyber espionage actors affiliated with the Federal Security Service (FSB) are using a USB worm called LitterDrifter in attacks on Ukrainian entities. The worm spreads malware via USB drives and communicates with the threat actor’s command-and-control servers. The cybersecurity firm Check Point has observed signs of possible infection outside … Read more