When Hackers Play Nice: Head Mare and Twelve Team Up for Russian Mischief 2024
Kaspersky’s latest findings reveal that Head Mare and Twelve, two notorious threat clusters, have teamed up to target Russian entities. With ProxyLogon, CobInt, and PhantomJitter in their arsenal, they’re executing attacks with the finesse of an Evil Mastermind Convention. Prepare for a cyber thriller where LockBit and Babuk play the villainous leads.
Hot Take:
Looks like we’ve got a cybersecurity buddy movie on our hands, folks! Head Mare and Twelve, two notorious threat actors, are teaming up for a blockbuster hacking spree in Russia. With a cast of malware and ransomware that would make any cybercriminal jealous, these digital desperados are proving that two heads—or clusters—are better than one. Grab your popcorn, but keep one eye on your firewall!
Key Points:
- Head Mare and Twelve are collaborating on attacks targeting Russian entities.
- Head Mare leverages vulnerabilities in WinRAR and Microsoft Exchange, as well as phishing techniques.
- Twelve is known for destructive attacks using public tools to encrypt and wipe data.
- New tools CobInt and PhantomJitter are being used for remote command execution.
- Ransomware such as LockBit 3.0 and Babuk are deployed to demand ransoms from victims.