Security researchers have uncovered a new Russian-speaking hacking group that they claim has been focusing on the past three years on corporate espionage, targeting companies across the world to steal documents that contain commercial secrets and employee personal data.
Named RedCurl, the activities of this new group have been detailed in a 57-page report released today by cyber-security firm Group-IB.
The company has been tracking the group since the summer of 2019 when it was first called to investigate a security breach at a company hacked by the group.
Since then, Group-IB said it identified 26 other RedCurl attacks, carried out against 14 organizations, going as far back as 2018.
Victims varied across countries and industry sectors, and included construction companies, retailers, travel agencies, insurance companies, banks, and law and consulting firms from countries like Russia, Ukraine, Canada, Germany, Norway, and the UK.
Spear-phishing and PowerShell
But despite the prolonged three-year hacking spree, the group didn't use complex tools or hacking techniques for their attacks. Instead, the group heavily relied on spear-phishing for initial access.
The TMT group has infected more than 50,000 organizations around the world with malware.
Three Nigerians suspected of being part of a cybercrime group that has made tens of thousands of victims around the world have been arrested today in Lagos, Nigeria, Interpol reported.
In a report disclosing its involvement in the investigation, security firm Group-IB said the three suspects are members of a cybercrime group they have been tracking since 2019 and which they have been tracking under the codename of TMT.
Group-IB said the group primarily operated by sending out mass email spam campaigns containing files laced with malware.
To send their email spam, the group used the Gammadyne Mailer and Turbo-Mailer email automation tools and then relied on MailChimp to track if a recipient victim opened their messages.
Sample email sent by the TMT group
Image: Group-IBOne of the email automation tools used by the group to spam victims.
Image: Group-IBThe file attachments were laced with various strains of malware that granted hackers access to infected computers from where they focused on stealing credentials from browsers, email, and FTP clients.
Group-IB said the group relied "exclusively on a variety of publicly available" malware strains such as AgentTesla, Loky, AzoRult, Pony, NetWire, and others, all available for download for free or for sale at cheap prices on underground forums.
WWE News: Shock Opponent In Line To Challenge Drew McIntyre For WWE Championship At TLC
D...
Drew McIntyre is on top of the WWE mountain right now.
He's coming off the back of an epic battle with Roman Reigns at Survivor Series, which saw Vince McMahon's top two guys show exactly why they're in that position.
The pair went to war for 25-minutes in the main event of the PPV, selling near fall after near fall.
Inter manager Antonio Conte conceded Real Madrid are on a "different level" to his side after they claimed a 2-0 win in the Champions League on Wednesday.
Eden Hazard converted a first-half penalty for Zinedine Zidane's side before Rodrygo's volley in the 59th minute wrapped up the result.
Inter, who have now won just one of their last six games in all competitions, are currently bottom of their Champions League group after picking up two points from four games.
Having seen Arturo Vidal sent off in the 33rd minute, Conte seemed content with his side's overall performance and stressed Zidane's side were always going to be a challenge to contain.
Cristiano Ronaldo has proven that he's immune to father time since signing for Juventus.
It's been no secret that the serial Ballon d'Or winner has been keeping himself in prime physical condition throughout his career, but it's now more than ever that we're seeing the benefits of it.
That's because Ronaldo doesn't seem to have lost a step despite now being 35 years old, an age where many world-class players would be forgiven for winding down their careers.
Arsenal are ready to try and offload winger Nicolas Pepe and AC Milan could have two factors that work in their favour should they try a move, a report claims.
According to Spanish outlet TF, the Ivorian has not managed to adapt well at Arsenal despite the €80m they paid Lille to sign him, and Mikel Arteta has told their management that they can find a new destination for him.
His silly red card against Leeds appears to have been the final straw, and although Arsenal know no club will give them the €80m they paid, the idea is to loan him out to try and get some of his value back before selling.
The big clubs in Europe are monitoring the situation, the report concludes, but MilanLive interestingly add that Milan are ‘thinking about it’.
Milan are a ‘serious candidate’ for various reasons, they claim, because the sale of Samu Castillejo would generate €15m and also open up a spot in the squad to be filled by someone younger, faster and with immeasurable potential.
Ivan Gazidis and Rafael Leao represent two allies for Milan too. The CEO has remained on excellent terms with Arsenal and this could facilitate the negotiation, while Leao is a friend of Pepé as they were part of the same forward line at Lille. The two remain in regular contact, MilanLive add.
Milan could aim for a loan with option to buy at a figure lower than the €50-60m Arsenal would likely request. The Rossoneri could push on the fact that Arsenal need to sell him, and Gazidis would be a perfect mediator.
Steps You Have To Do To Receive Your Covid-19 Loan Approved.
Visit www.Covid19.nmfb.com
And Choices Your Loan Category Which You Had Applied.
Scroll Down you Will see a picture Down Below.
1- Visit www.Covid19.nmfb.com After Side Opened And Ask You To Choose Your Loan Category.
Paste links to your social accounts below