The boost of attacks-data breaches confirm that the phenomenon is growing and the crisis in Ukraine will worsen it. Will we move from cyber espionage to desruptions?
Yoroi cybersecurity experts: The malware (aka TH-264) has improved protection mechanisms and can operate as a silent info stealer or run offensive plugins.
Yoroi-Cybaze Experts: An attacker can execute arbitrary code on the target device by taking control of it without authentication. In addition, there is currently no patch.
Cybaze/Yoroi-ZLab cyber security experts: The campaign to deliver the malware, an infostealer, shows similarities with techniques adopted in recent operations against italian manufacturing sector.
Yoroi ZLab cyber security experts: The malware is a .NET executable with likely Russian origin, it has advanced stealing capabilities and continues to evolve.
Developed by cyber security expert and Yoroi’s founder Marco Ramilli, it monitor trends over thousands even millions of samples. Now it will show Domains, Files and Processes of the malicious codes.