A Russian government-backed hacking group called Coldriver has developed new malware strains to replace their previously exposed tool, LostKeys. These new tools, NOROBOT, YESROBOT, and MAYBEROBOT, are designed to evade detection and target high-value entities for intelligence gathering. #Coldriver #LostKeys #NOROBOT #YESROBOT #MAYBEROBOT
Keypoints
- Coldriver is a hacking group linked to Russian intelligence, active since 2022.
- The group rapidly replaced LostKeys malware with new tools within five days of disclosure.
- The new malware strains are designed to evade detection and facilitate intelligence theft.
- Coldriver primarily targets high-value targets like human rights organizations and media groups.
- The group uses tactics such as fake CAPTCHA pages and trusted backdoors to infiltrate networks.
Read More: https://therecord.media/coldriver-callisto-russia-hackers-new-malware-google