The Russian state-sponsored hacker group “Secret Blizzard” has been breaching Ukraine’s systems using existing backdoor vulnerabilities and other hacking tools. Investigations by Microsoft reveal the group, which is connected to Russia’s Federal Security Service, targets Ukrainian military computers, specifically drone pilots. It executes malware known as “Amadey” through spear-phishing attacks. The group’s activities, tracked between March and April 2024, seek to compromise government and political bodies to seize their data.
SesameOp: Using the OpenAI Assistants API for Covert C2 Communication
Microsoft’s Detection and Response Team has exposed a sophisticated backdoor malware that exploits the OpenAI Assistants API as an unconventional command-and-control communication channel. Named SesameOp,
