The doc attachment contacts a link, exploiting the Equation Editor vulnerability, and downloads an exe: the malware. Data is then exfiltered via SMTP to an email address.
Team OneFist declares war on data center UPS in Russia. The group, part of the IT Army of Ukraine, has placed “software bombs” inside them, with the aim of destroying them by overloading
Team OneFist declares war on uninterruptible power supplies (UPS) in Russia. Volunteers, members of the IT Army of Ukraine, have launched Op Toybox, which targets large UPSs in data centers. The hackers claim to have planted “software bombs” in them, which bring the system voltage to dangerous levels and at the same time prevent recovery attempts by Moscow’s cybersecurity experts. In particular, the 10 Kilovolt three-phase UPS, which supply power to the data centers of the servers and routers and so far several have already been destroyed, are under attack. The Team OneFist operation is part of the cyber warfare launched against Russia following the invasion of Ukraine and the attacks, according to the hacker group itself, will continue with increasing intensity until Moscow ceases the violence against the European country.