BI.ZONECloud Werewolf spearphishes for government employees in Russia and Belarus with fake spa vouchers…The attackers use phishing emails with seemingly legitimate documents and evade defenses by hosting the malicious payload on a remote…5 min read·Mar 29, 2024----
BI.ZONEFluffy Wolf sends out reconciliation reports to sneak into corporate infrastructuresThe group has adopted a simple yet effective approach to gain initial access: phishing emails with an executable attachment. This way…5 min read·Mar 19, 2024----
BI.ZONEMysterious Werewolf hits defense industry with new RingSpy backdoorThe criminal group gains initial access through phishing emails with a compressed executable that unleashes RingSpy, an original remote …5 min read·Mar 13, 2024----
BI.ZONEScaly Wolf uses White Snake stealer against Russian industryThe group, which has been on the radar since the summer of 2023, conducted several phishing campaigns using Russian regulatory body and law…10 min read·Feb 2, 2024----
BI.ZONEA striking resemblance: Gambling Hyena and Twelfth Hyena clusters comparedWhat is common between two hacktivist groups attacking the Russian government sector.4 min read·Dec 28, 2023----
BI.ZONERare Wolf preys on sensitive data using fake 1C:Enterprise invoices as lureHow adversaries create diversions and stay invisible5 min read·Nov 29, 2023----
BI.ZONESticky Werewolf attacks public organizations in Russia and BelarusOur cyber threat intelligence experts discover a new group that uses presumably legitimate software to interfere with government…5 min read·Oct 13, 2023----
BI.ZONEWhite Snake spotted in emails: the stealer was disguised as official state requirementsAny threat actor with $140 can utilize this malware. For that price, they get a complete end-to-end attack kit: i) a builder to create…6 min read·Aug 8, 2023----
BI.ZONEHacker group Quartz Wolf leverages legitimate software for cyberattacksCybercriminals have modified the standard “phishing email + remote access” combo with an unexpected hook — the leveraging of legitimate…3 min read·Jul 17, 2023----
BI.ZONEHunting the hunter: BI.ZONE traces the footsteps of Red WolfThe cyber spies who had been on hiatus since 2022 make a surprising comeback. Red Wolf has been spotted penetrating company infrastructures…4 min read·Jun 28, 2023----