Russia-linked APT Gamaredon starts stealing data from victims between 30 and 50 minutes after the initial compromise
Security Affairs
JULY 15, 2023
Ukraine’s Computer Emergency Response Team (CERT-UA) states that Russia-linked APT Gamaredon starts stealing data 30 minutes after the initial compromise. The group uses third-party services and/or resources of Telegram (Telegraph) to determine the IP addresses of C2 and avoid using the DNS subsystem.
Let's personalize your content