“Izvestia”: cyber criminals under the guise of bailiffs attacked Russian companies

The current wave of phishing is the most from the beginning of 2025. Malicious letters disguised as official notifications from the Moscow Interdistrict Department of bailiffs received several dozen organizations from different regions of Russia. All emails were sent from a fake email address. Inside each message was an archive named "Execution Sheet No. 27186421-25 from <date>.zip," which contained a file containing the DarkWatchman RAT virus. Russian companies first encountered this virus in 2021. Since then, attackers periodically conduct similar campaigns, changing the legend and templates of letters, improving the virus. Recent changes have made the program more resistant to antivirus detection and complicate its analysis. Ivan Timkov, an expert at the Center for Cyber Threat Research Solar, explained to the publication that with the help of the virus, cybercriminals secretly record every keystroke on the victim’s keyboard. Access to passwords, bank data and other information. “This allows cybercriminals to remotely control infected systems, upload new files and execute various commands,” Timkov said. The Federal bailiff service (FSPP) reminded that they never send official notifications by e-mail. In this regard, it is necessary to be vigilant when such electronic messages are received, do not click on links, do not upload unknown files, do not transfer your personal data to scammers, including information about bank cards and accounts. In order to avoid fraudulent actions, it is necessary to check letters containing calls to action, for example, “open”, “read”, “acquaint yourself”. Earlier in the Department for the organization of combating the illegal use of information and communication technologies (UBC) of the Ministry of Internal Affairs of the Russian Federation Fraudsters use phishing links with “clickbait” headlines that focus on important public topics, including the end of the CBO. The department specified that the attackers “parasitize” on socially significant topics, write loud words, but the ultimate goal is theft of money.

Reagiere auf diesen Beitrag

👍 0 ❤️ 0 😂 0 😮 0 😢 0 😡 0

Подписаться на NX Россия

🔗 Share

Facebook X (Twitter) WhatsApp Telegram LinkedIn WeChat VK LINE KakaoTalk Reddit Pinterest E-Mail