Hackers are actively attacking Russia’s industrial sector with the new spyware Batavia, stealing sensitive documents and system information. The campaign, ongoing since July 2024, involves phishing emails disguised as fake contracts and has affected over 100 Russian organizations. #Batavia #Kaspersky
Keypoints
- The Batavia malware campaign targets Russian industrial organizations using phishing emails.
- Victims are tricked into downloading malicious files via fake contracts in phishing links.
- Batavia exfiltrates documents, system logs, takes screenshots, and gathers system information.
- The campaign has impacted over 100 organizations, with possible links to state-backed actors or cybercriminal groups.
- Previous cyberattacks in Russia include Nova malware, RedLine stealer, and activity linked to the Rare Wolf group.
Read More: https://therecord.media/spyware-strain-steals-data-russian-industrial-sector