The threat actors behind the RomCom RAT have been using a network of fake websites advertising rogue versions of popular software to infiltrate targets.
The remote access trojan has since been used heavily in attacks targeting Ukrainian state and military systems via spoofed versions of legitimate software.
The line is blurring between cybercrime driven by financial gain and APT attacks motivated by geopolitics, espionage, disruption, and warfare, the researchers write.
Since the rise of ransomware-as-a-Service (RaaS), cybercriminals are not using advanced tactics and targeted attacks that were previously thought to be the domain of APT actors.
Instead, tactics and techniques that were formerly used by financially motivated actors are increasingly being used in attacks with geopolitical goals.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply