Russian state-sponsored group Sandworm has been launching malware attacks on Ukrainian Windows users, involving bogus updates and Microsoft Key Management Service activators. As part of the campaign, a fake KMS activation tool with BACKORDER malware loader facilitated DarkCrystal RAT delivery. The malware steals saved credentials, browser histories, keystrokes, and system details. These attacks are a threat to Ukraine’s national security, critical infrastructure, and private sector, warns EclecticIQ.
Data Reveals Identity-Based Attacks Now Dominate Cybercrime
Cyberattacks are increasingly focusing on stolen identities instead of malware, according to the CrowdStrike 2024 Global Threat Report. The report finds that three-quarters of attacks
