From PC Mag: Google says a group of Russian state-sponsored hackers has been spotted sending encrypted PDFs to trick victims into running a decryption tool that’s actually malware.
On Thursday, the company published a blog post documenting a new phishing tactic from Coldriver, a hacking group that the US and UK suspects works for the Russian government. A year ago, news emerged that Coldriver targeted three US nuclear research laboratories.
Like other hackers, Coldriver will try to hijack a victim’s computer by sending out phishing messages that’ll culminate in delivering malware.
“Coldriver often utilizes impersonation accounts, pretending to be an expert in a particular field or somehow affiliated with the target,” the company added. “The impersonation account is then used to establish a rapport with the target, increasing the likelihood of the phishing campaign's success, and eventually sends a phishing link or document containing a link.”
View: Full Article
