Contact

Attempted cyberattacks on military systems using mobile malware

NetmanageIT OpenCTI - opencti.netmanageit.com

Attempted cyberattacks on military systems using mobile malware



SUMMARY :

The report details attempts by threat actors to compromise smartphones and tablets belonging to military personnel by distributing malicious APK files disguised as legitimate software for military systems like GRISELDA and "Eyes". The malware, named HYDRA and a modified version of "Eyes", was designed to steal authentication data, GPS coordinates, and other sensitive information. The report emphasizes the importance of mobile device security and provides indicators of compromise, including file hashes, email addresses, IP addresses, and domain names associated with the attacks. It also highlights the collaboration between various Ukrainian cybersecurity teams in detecting and analyzing these incidents.

OPENCTI LABELS :

apt,fakeapps,aurora,militarytargeting,datatheft,mdmbot,mcrat,hydraq,roarur,homeunix,hidraq,mobileattacks,9002 rat,homux


Open in NetmanageIT OpenCTI Public Instance with below link!


Use public read only username and password on login page.

NOTE : Use Public READ only user credentials on login page banner.


Attempted cyberattacks on military systems using mobile malware