Summary: APT group Space Pirates has targeted Russian IT organizations using new malware called LuckyStrike Agent, among other tools, as part of a prolonged campaign dubbed Erudite Mogwai. Discovered by Solar, the group is known for espionage and has been active since at least 2017, employing methods to compromise systems through public services. Their tactics exhibit significant customization, particularly with a modified proxy utility, Stowaway.
Affected: Russian information technology organizations
Keypoints :
- Space Pirates has been linked to cyberattacks on Russian IT firms using LuckyStrike Agent and other tools.
- The group is involved in espionage activities, having targeted government and high-tech sectors since 2017.
- Attackers compromised systems through public web services and customized existing utilities to avoid detection.
Source: https://thehackernews.com/2025/02/space-pirates-targets-russian-it-firms.html