"RedCurl Cybercrime Group Has Hacked Companies for Three Years"
Researchers at the security firm Group-IB have discovered a Russian-speaking hacking group, dubbed RedCurl. According to the researchers, RedCurl has focussed on corporate espionage and launched 26 campaigns against 14 organizations since 2018. RedCurl has targeted construction companies, retailers, travel agencies, insurance companies, banks, and law firms in Russia, Ukraine, Canada, Germany, Norway, and the UK. The group relies heavily on spear phishing for initial access into a targeted company's network. This article continues to discuss the RedCurl group's targets, spear phishing tactics, collection of PowerShell-based trojans, movement throughout infected networks, and its similarity with other hacking groups like CloudAtlas and RedOctober.
ZDNet reports "RedCurl Cybercrime Group Has Hacked Companies for Three Years"