Summary: Recent reports by Russian cybersecurity firms reveal a significant information-stealing campaign leveraging a malware known as Nova, targeting local organizations. Nova, available for purchase on dark web marketplaces, is linked to increased hacking activity against Russian entities, particularly amidst ongoing geopolitical tensions. The malware, a variant of SnakeLogger, aims to harvest sensitive data through deceptive phishing tactics.

Affected: Local Russian organizations

Keypoints :

• Nova is being sold as a service on the dark web with licenses ranging from to 0.
• Researchers attribute new cyberespionage campaigns to a state-backed group known as Rezet, targeting critical industries.
• Phishing attacks use disguised malicious files to gain initial access to victims’ systems.