Russian hackers use Ngrok feature and WinRAR exploit to attack embassies
November 19, 2023
11:14 AM
0
After Sandworm and APT28 (known as Fancy Bear), another state-sponsored Russian hacker group, APT29, is leveraging the CVE-2023-38831 vulnerability in WinRAR for cyberattacks.
APT29 is tracked under different names (UNC3524,/NobleBaron/Dark Halo/NOBELIUM/Cozy Bear/CozyDuke, SolarStorm) and has been targeting embassy entities with a BMW car sale lure.
The CVE-2023-38831 security flaw affects WinRAR versions before 6.23 and...
By
AFFA 2023-11-19 23:12:47 0 1029