Russian Cyber Chaos: COLDRIVER’s Malware Tricks and Bearlyfy’s Ransom Rampage

The Russian APT group COLDRIVER is back at it again with new ClickFix-style attacks, delivering malware BAITSWITCH and SIMPLEFIX. While they pretend to be CAPTCHA checks, the only thing they’re verifying is your system’s vulnerability. Who knew cyber espionage could have such a penchant for disguise?

3P
Published: September 26, 2025 1:06 pmAdded: September 26, 2025 at 6:13 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Looks like Russia has more than just vodka and bears to worry about! With COLDRIVER and its malware bandmates BAITSWITCH and SIMPLEFIX orchestrating a cyber concerto, it’s clear they’re not here to play nice. But wait, there’s more: Bearlyfy’s ransomware rampage adds another layer of digital chaos. It’s like a cyber Cold War, but with more clicks and less espionage glam.

Key Points:

  • COLDRIVER APT group is back at it with a fresh round of attacks using BAITSWITCH and SIMPLEFIX.
  • ClickFix tactics are proving to be effective, keeping victims on their toes with fake CAPTCHA checks.
  • Targets include NGOs, human rights defenders, and others connected to civil society in Russia.
  • Bearlyfy, a new player, uses ransomware strains like LockBit 3.0 and Babuk, targeting Russian companies.
  • Bearlyfy shows infrastructure overlaps with pro-Ukrainian group PhantomCore, but operates independently.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?