Description: Online trading economy news from asian region…
Kaspersky Lab experts have identified a link between cyber attacks by two infamous cybercriminals – GreyEnergy (who is apparently the successor to the BlackEnergy group) and Sofacy, which focus on cyberbullying. Both used the same servers at the same time, but each with a different purpose.
BlackEnergy and Sofacy hackers are among the most wanted actors in the modern global cyber-crime scene. In the past, they have been involved in activities that have had far-reaching consequences on the infrastructure of some countries. The BlackEnergy group was one of the most famous cyber-attacks in history – its attacks targeted the Ukrainian power plant in 2015, causing power outages. The second group, Sofacy, has been very confused by its attacks on the US and European governmental organizations, which
ICS CERT’s special team, as stated in the article , focuses on the research and elimination of threats to industrial systems, has found two servers hosted in Ukraine and Sweden, both used at the same time in June 2018. The GreyEnergy Group used servers in its phishing campaign to saving a malicious file. This has been downloaded by users after they opened a text document that was attached to a phishing e-mail. At the same time, Sofacy used this server as a C & C center (command and control) for its own malw