Finance

Two Hacker Groups Target Russian Financial Institutions

13 - 20 November 2018

Two hacker groups – Silence and MoneyTaker – have been targeting Russian financial institutions with phishing emails designed to look like they come from the Central Bank of Russia (CBR) and Financial Sector Computer Emergency Response Team (FinCERT).
Cyber_News_Finance
Two hacker groups – Silence and MoneyTaker – have been targeting Russian financial institutions with phishing emails designed to look like they come from the Central Bank of Russia (CBR) and Financial Sector Computer Emergency Response Team (FinCERT). The Silence group masqueraded as the CBR and sent phishing emails containing zipped files that downloaded the Silence downloader. The MoneyTaker group impersonated the FinCERT and disseminated decoy documents that downloaded the Meterpreter Stager. Researchers believe both hacker groups likely obtained the decoy documents from previously compromised mailboxes of employees at Russian financial institutions.

References:
[1] Two hacker groups attacked Russian banks purporting to be the Central Bank of Russia
 
 

More Weekly Cyber Newsanalysis and insights

Ensign Consulting

Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.​

Ensign Systems Integration

Architecting and implementing cybersecurity solutions that bolster defences

Ensign Managed Security Services

Managing your security operations for advanced threat detection, continuous monitoring, and triage services

Ensign Labs

Performing deep research to analyse vulnerabilities, deploy advanced threat hunting and provide cyber threat intelligence