"Russian Hackers Using Graphiron Malware to Steal Data from Ukraine"

A threat actor with ties to Russia was seen using new information-stealing malware in cyberattacks against Ukraine. Symantec has dubbed the malware Graphiron, which was created by the Nodaria espionage group. This group is tracked by the Computer Emergency Response Team of Ukraine (CERT-UA) as UAC-002. According to the Symantec Threat Hunter Team, the malware is written in Go and is designed to collect a wide variety of information from impacted computers, including system information, credentials, screenshots, and files. CERT-UA first highlighted Nodaria in January 2022, emphasizing the adversary's use of SaintBot and OutSteel malware in spear-phishing attacks against government organizations. This article continues to discuss Nodaria's use of new information-stealing malware in cyberattacks targeting Ukraine. 

THN reports "Russian Hackers Using Graphiron Malware to Steal Data from Ukraine"

Submitted by Anonymous on