"Turla’s ‘Crutch’ Backdoor Leverages Dropbox in Espionage Attacks"

Researchers have found a previously undocumented backdoor, and document stealer, which is being used by the Russian-speaking Turla advanced persistent threat espionage group.  The researchers are calling the malware "Crutch."  The malware can bypass security measures by abusing legitimate tools, including the file-sharing service Dropbox, to hide behind normal network traffic. The Crutch toolset has been designed to exfiltrate sensitive documents and other files to Dropbox accounts, which Turla operators control.

Threatpost reports: "Turla’s ‘Crutch’ Backdoor Leverages Dropbox in Espionage Attacks"