(ANSA) – ROME, MARCH 10 – Cybercriminals are “opportunistically” exploiting the ongoing conflict by spreading through activists, and especially on Telegram, malware that appear to be offensive tools to target Russian entities, but in reality they aim unaware users. This is the alarm raised by the researchers of Cisco Talos Intelligence Group. In one of the cases detected, the security firm observed “a threat actor” offering a Distributed Denial of Service (DDoS) tool on Telegram called, for taking sites offline, to be used against Russian platforms. The downloaded file actually infects the unwitting victim with malware designed to steal cryptocurrency credentials and information. “One of the main means on which these types of offers are running is Telegram, which is very popular in Eastern Europe and widely used by both Ukrainians and Russians.”
“These observations – explains Cisco Talos Intelligence Group – serve to remind users that they must be even more alert at this time for the increase in cyber threats. These threats can take the form of e-mails with a theme, on news related to conflict or donation requests, are malware disguised as defensive or offensive security tools. We remind users to look carefully at suspicious emails before opening them and to validate software or other files before downloading. ” (HANDLE).
I have been working in the news industry for over 10 years now and I have worked for some of the biggest news websites in the world. My focus has always been on entertainment news, but I also cover a range of other topics. I am currently an author at Global happenings and I love writing about all things pop-culture related.