The threat actor known as Sticky Werewolf has been linked to targeted attacks primarily in Russia and Belarus with the aim of delivering the Lumma Stealer malware by means of a previously undocumented...
Read Full Article »Sticky Werewolf Uses Undocumented Implant to Deploy Lumma Stealer in Russia and Belarus
Discussion Points
- The use of previously undocumented implants in malware delivery is a concerning trend, highlighting the need for constant monitoring and research into new attack vectors.
- The targeting of Russia and Belarus raises questions about potential state-sponsored involvement or regional tensions.
- The similarities between the tracked names "Angry Likho" and "Awaken Likho" suggest a possible connection to existing known malware families.
Summary
A new threat actor, Sticky Werewolf, has been linked to targeted attacks in Russia and Belarus. The attackers use a previously undocumented implant to deliver the Lumma Stealer malware.
The activity has been tracked by Kaspersky under the name "Angry Likho", which bears a strong resemblance to "Awaken Likho" - a known malware family. This connection suggests a potential link between the two.
The implications of this attack are concerning, particularly given the regional focus on Russia and Belarus. The use of previously undocumented implants highlights the need for constant monitoring and research into new attack vectors to stay ahead of emerging threats.