The U.S. offers a $10 million bounty for information on three Russian FSB officers accused of cyberattacks targeting U.S. critical infrastructure and energy companies. Meanwhile, cybercriminals are using Ethereum smart contracts to hide malware delivery in npm packages, and North Korean threat actors continue to exploit CTI platforms to manage campaigns targeting cryptocurrency professionals. #RussianFsb #EthereumSmartContracts
Keypoints
- The U.S. Department of State is offering a $10 million bounty for details on three Russian FSB officers linked to cyberattacks.
- These threat actors targeted U.S. government agencies, energy firms, and over 500 foreign energy companies between 2012 and 2017.
- Malicious npm packages are now using Ethereum smart contracts to conceal malware delivery, complicating detection efforts.
- North Korea-affiliated hackers monitor CTI platforms to track infrastructure exposure and rapidly deploy new assets.
- The campaign mostly targets cryptocurrency professionals through sophisticated social engineering scams and fake job offers.
Read More: https://www.sentinelone.com/blog/the-good-the-bad-and-the-ugly-in-cybersecurity-week-36-7/