Summary: Kaspersky Labs has identified renewed activity from the APT group Angry Likho, which has evolved its tactics and introduced a new malware implant targeting high-profile entities in Russia and Belarus. The group primarily employs spear-phishing techniques, utilizing deceptive emails to propagate a powerful infostealer known as Lumma Stealer. This malware is capable of exfiltrating sensitive data from compromised systems, indicating a persistent and evolving threat landscape.
Affected: Organizations in Russia and Belarus, particularly government agencies and contractors
Keypoints :
- Angry Likho, also known as Sticky Werewolf, has been active since 2023 and is known for its targeted attacks.
- The group uses spear-phishing emails to deliver malware, including a new implant distributed as a self-extracting archive.
- Lumma Stealer is the latest malware identified, capable of collecting sensitive data such as banking details, credentials, and cookies.
Views: 15
简体中文
Nederlands
Français
Bahasa Indonesia
日本語
Português