The Russian-linked cyber-espionage group Shuckworm is targeting Ukrainian entities with an updated version of its GammaSteel infostealer malware. The group, believed to operate on behalf of Russia’s Federal Security Service, uses removable USB drives for initial access and employs increasingly stealthy and sophisticated methods, including using PowerShell. The malware is capable of gathering system information and exfiltrating specific files, leveraging tactics aimed at evasion and obfuscation. Researchers note Shuckworm’s persistently evolving methods pose a significant cyber threat, particularly to entities linked to Ukraine.
Experts Uncover New XorDDoS Controller, Infrastructure as Malware Expands to Docker, Linux, IoT
Cybersecurity researchers have highlighted the ongoing risk posed by XorDDoS, a distributed denial-of-service malware that has targeted the US in 71.3% of attacks from November
