These campaigns were all observed between mid-May and early July of this year, and can likely be attributed to one, or possibly two, groups. The attacks have become more sophisticated, and have evolved to evade detection on a continual basis. Other researchers have attributed these attacks to a group known as the Cobalt Gang, which has continued its activities even after the arrest of its alleged leader in Spain this year.
ref:https://blog.talosintelligence.com/2018 ... order.html
Forum for analysis and discussion about malware.
1 post • Page 1 of 1