April 17, 2024 at 04:54PM Two newly discovered malware tools, Kapeka and Fuxnet, have targeted industrial control systems and operating technology in Europe, marking the cyber repercussions of the ongoing conflict between Russia and Ukraine. Kapeka, connected to the Sandworm group, functions as a persistent backdoor, while Fuxnet, used by the Blackjack group, aims to … Read more
April 17, 2024 at 04:06PM Kapeka is a new backdoor possibly linked to Russia’s Sandworm and a potential successor to GreyEnergy. Little public information exists on Kapeka, but WithSecure and Microsoft believe it is a tool of a nation-state group. Kapeka has potential for long-term cyberespionage or to deliver malware payloads, possibly originating from Sandworm. … Read more
April 17, 2024 at 10:04AM WithSecure’s report reveals the discovery of the new Kapeka backdoor, linked to Russian APT group Sandworm, targeting Eastern Europe since 2022. Microsoft identifies it as KnuckleTouch, describing its involvement in ransomware campaigns and multifunctional capabilities. The backdoor’s advanced features indicate APT-level activity, showing conceptual overlaps with GreyEnergy and Prestige. Based … Read more