SecureList

AUGUST 15, 2022

For instance, J-Lightning Application purported to help users to invest into a Polish oil refinery, a Russian energy company, a Chinese cryptocurrency exchange and an American investment fund. Interestingly enough, some fraudulent app creators were targeting users from several countries at once. Trojan.AndroidOS.Fakeapp.ed

Mobile 139

Mobile Adware Banking Malware 139

SecureList

DECEMBER 1, 2023

DroxiDat, a lean variant of SystemBC that acts as a system profiler and simple SOCKS5-capable bot, was detected at an electric utility company. The C2 (command and control) infrastructure for the incident involved an energy-related domain, ‘powersupportplan[.]com’, com’, that resolved to an already suspicious IP host.

Malware 136

Malware Ransomware Encryption Energy and Utilities 136

SecureList

NOVEMBER 14, 2023

APT targeting turns toward satellite technologies, producers and operators The only known case of an attack utilizing satellite technologies that happened in recent years was the KA-SAT network hack of 2022. This politician became the target of a previously undiscovered “zero-day” attack aimed at infecting his phone with spyware.

Hacking 140

Hacking Energy and Utilities Media Malware 140

SecureList

FEBRUARY 16, 2023

These sites referenced public figures and humanitarian groups, offering to accept cash in cryptocurrency, something that should have raised a red flag in itself. By getting the user’s secret phrase, cybercriminals could get access to their cryptocurrency balance. Payout notices could arrive by mail, email, or as a text message.

Phishing 116

Phishing Scams Accountability Energy and Utilities 116