A report published by SentinelLabs highlights a cyber-attack on the Russian government that is believed to be attributed to Chinese threat actors. The report states that Mail-O malware was used in the attack, which is a variant of a malware called PhantomNet or SManger used by threat actor TA428. TA428 is believed to be of Chinese origin and commonly attacks Southeast Asian and Russian targets. The attack on Russian government organizations was confirmed by the Russian Federal Security Service (FSB), the country’s premier intelligence agency.
Watch the Video
How does Binary Defense help protect your organization? With best in breed cybersecurity tactics, techniques, and services, we make sure that your environment is secure against the most advanced attacks.