Kaspersky has released a new investigation on Tomiris APT group that focuses on intelligence gathering in Central Asia. This Russian-speaking actor uses a wide variety of malware implants developed at a rapid pace and in all programming languages imaginable, presumably in order to obstruct attribution. What drew the researchers’ special attention is that Tomiris deploys… Continue reading Kaspersky investigates Tomiris APT group targeting government entities in CIS
Tag: Tomiris
Tomiris backdoor potentially hints at new activity of a threat actor behind the Sunburst attack
While investigating a yet unknown advanced persistence threat (APT), Kaspersky researchers came across new malware that contained several important attributes that potentially connect it to DarkHalo – the threat actor behind the Sunburst attack. It is considered one of the most impactful supply chain security incidents of recent years. The Sunburst security incident hit the… Continue reading Tomiris backdoor potentially hints at new activity of a threat actor behind the Sunburst attack