Tomiris is a Russian-speaking threat actor that has been identified by Kaspersky as being focused on gathering intelligence in Central Asia.
The group has attacked government and diplomatic entities in the Commonwealth of Independent States (CIS) using a polyglot toolset of low-sophistication “burner” implants coded in various programming languages.
Tomiris is potentially linked to Nobelium, a Russian nation-state group responsible for the SolarWinds supply chain attack, and overlaps with a Turla cluster identified by Google-owned Mandiant, UNC4210.
It is possible that Tomiris and Turla collaborate on operations or use the same software provider.
👋 Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! 🛍️
If not, consider contributing to my caffeine supply at Buy Me a Coffee ☕️.
Your clicks = cosmic support for more awesome content! 🚀🌈
Leave a Reply