"Russian Cybercriminals Switch to Cloud"

Cybersecurity researchers at Kaspersky released research on Russian-speaking cybercriminal activity and how it has changed over the past six years.  The researchers found that historically favored attacks targeting banks and other financial organizations with money-stealing malware have largely been replaced. The researchers stated that nowadays, adversaries prefer to hit their targets with ransomware and data-stealing attacks delivered via spear-phishing emails with malicious attachments.  Another critical change recorded by the researchers was a move away from developing malware in-house and toward public cloud infrastructure. Researchers found that cybercriminals now prefer to use publicly available penetration testing and remote access software to bypass security defenses by appearing legitimate.  Russian adversaries were found to be working together in much smaller groups than before, and instead of hitting Russia, they are striking targets overseas.

Infosecurity reports: "Russian Cybercriminals Switch to Cloud"