30 iulie 2021

Russia's APT29 Still Actively Delivering Malware Used in COVID-19 Vaccine Spying

securityweek.com

The Russian cyberespionage group known as APT29 and Cozy Bear is still actively delivering a piece of malware named WellMess, despite the fact that the malware was exposed and detailed last year by Western governments.WellMess, also known as WellMail, is a lightweight piece of malware that enables its operators to execute shell commands, as well as to upload and download files on the compromised system.The malware was first described in 2018 when it was spotted in attacks aimed at Japanese [...]