Hackers began sending medical documents to spy on Russians
In recent months, attackers have begun distributing software disguised as medical documents that allows for espionage. Bi.Zone reported this to TASS.
The company clarified that to implement the scheme, hackers use the Havoc penetration testing framework. When used, a distracting document is downloaded to the user’s device, after which the downloader and framework agent are hiddenly installed. Using Havoc, attackers can remotely execute commands and upload data.
“In another campaign, criminals sent phishing emails on behalf of one of the security forces. The user was notified that he was allegedly suspected of committing a serious crime, and was asked to provide documents, a list of which was offered to be downloaded via a link in the body of the letter,” added Bi.Zone.
In August, the head of the Zecurion analytical center, Vladimir Ulyanov, warned Russians about the potential risks of data leaks from smartwatches and suggested ways to minimize them. The expert emphasized that the more information an attacker knows about a potential victim, the easier it is to implement a fraudulent scheme.