ESET Research

ESET researchers have discovered new versions of the DanaBot Trojan, updated with a more complicated protocol for C&C communication and slight modifications to architecture and campaign IDs

ESET research shows that DanaBot operators have been expanding the malware’s scope and possibly cooperating with another criminal group

In August 2018, Sednit’s operators deployed two new Zebrocy components, and since then we have seen an uptick in Zebrocy deployments, with targets in Central Asia, as well as countries in Central and Eastern Europe, notably embassies, ministries of foreign affairs, and diplomats

The recent spike in Emotet activity shows that it remains an active threat

ESET researchers have shown that the Sednit operators used different components of the LoJax malware to target a few government organizations in the Balkans as well as in Central and Eastern Europe

ESET researchers have discovered new DanaBot campaigns targeting a number of European countries

ESET researchers have observed a significant change in the campaign of the infamous espionage group

Zebrocy heavily used by the Sednit group over last two years

Over the past few years the Sednit group has used various techniques to deploy their various components on targets computers. The attack usually starts with an email containing either a malicious link or malicious attachment.