March 10th, 2022: Malware “Liberator” Targets Ukraine

Industry: N/A | Level: Strategic | Source: CiscoTalos

Cybercriminals are taking advantage of sympathizers and supporters of the Russia and Ukraine conflict. There have been observed fraudulent donation schemes and phishing emails taking advantage of the crisis. The latest as reported by Cisco Talos infostealer malwar. Liberator, is being distributed to Ukraine sympathizers under the guise of a DDoS tool to target Russia. The malware is distributed through Telegram targeting members of the Ukraine IT Army. Cisco Intelligence identifies the threat actor associated with the activity has been active since November 2021 distributing various types of information stealers and are taking advantage of the crisis.