Mastodawn

Amazon Threat Intelligence identifies Russian cyber threat group targeting Western critical infrastructure
#CVE_2022_26318 #CVE_2021_26084 #CVE_2023_22518 #CVE_2023_27532 #CurlyCOMrades
https://aws.amazon.com/blogs/security/amazon-threat-intelligence-identifies-russian-cyber-threat-group-targeting-western-critical-infrastructure/

Amazon Threat Intelligence identifies Russian cyber threat group targeting Western critical infrastructure | Amazon Web Services

As we conclude 2025, Amazon Threat Intelligence is sharing insights about a years-long Russian state-sponsored campaign that represents a significant evolution in critical infrastructure targeting: a tactical pivot where what appear to be misconfigured customer network edge devices became the primary initial access vector, while vulnerability exploitation activity declined. This tactical adaptation enables the same […]

Amazon Web Services

TechNadu Nov 6

🕵️‍♀️ Bitdefender uncovered a cyber-espionage campaign using virtual machines as a stealth layer.

The group, dubbed Curly COMrades, used Hyper-V to deploy lightweight Linux VMs that ran custom malware while staying invisible to Windows-based defenses.

Targets: government & energy networks in Georgia and Moldova.

Focus: persistence, stealth, and low detection footprint.

💬 How should defenders monitor virtualization layers without overextending detection fatigue?

#CyberSecurity #ThreatIntel #APT #CurlyCOMrades #Russia #InfoSec #MalwareAnalysis #VirtualizationSecurity

The Threat Codex Nov 5

Curly COMrades: Evasion and Persistence via Hidden Hyper-V Virtual Machines
#CurlyCOMrades
https://www.bitdefender.com/en-us/blog/businessinsights/curly-comrades-evasion-persistence-hidden-hyper-v-virtual-machinesachines

Winbuzzer Nov 4

Russian Hackers Abuse Hyper-V to Hide Malware and Evade Endpoint Detection

#Cybersecurity #Malware #HyperV #Russia #Hacking #InfoSec #ThreatIntel #EDR #Windows #Virtualization #CyberAttack #PowerShell #Linux #Bitdefender #CurlyCOMrades

https://winbuzzer.com/2025/11/04/russian-hackers-abuse-hyper-v-to-hide-malware-and-evade-endpoint-detection-xcxwbn

The DefendOps Diaries Nov 4

Russian hackers have upped the stealth game—embedding malware in ultra-light Linux VMs via Hyper-V to sidestep detection. Could your systems catch this modern tactic?

https://thedefendopsdiaries.com/russian-hackers-exploit-hyper-v-to-hide-malware-in-lightweight-linux-vms/

#hyperv
#linuxsecurity
#malwareevasion
#virtualization
#cyberattack
#curlycomrades
#edrbypass
#infosec
#threatdetection

The Threat Codex Aug 13, 2025

Curly COMrades: A New Threat Actor Targeting Geopolitical Hotbeds
#CurlyCOMrades #MucorAgent
https://www.bitdefender.com/en-us/blog/businessinsights/curly-comrades-new-threat-actor-targeting-geopolitical-hotbeds

Curly COMrades: A New Threat Actor Targeting Geopolitical Hotbeds

This research from Bitdefender Labs details a cluster of malicious activity we've been tracking since mid-2024.

Bitdefender Blog

Hackread.com Aug 12, 2025

NEW: Russian-linked group ‘Curly COMrades’ deploying the stealthy #MucorAgent backdoor in Eastern Europe via NGEN hijack tactics to spy on gov and energy networks.

https://hackread.com/russian-curly-comrades-mucoragent-malware-europe/

#CyberSecurity #CurlyCOMrades #EasternEurope #Russia #Malware

Russian-Linked Curly COMrades Deploy MucorAgent Malware in Europe

Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto

The DefendOps Diaries Aug 12, 2025

Curious how hackers are hiding in plain sight? The Curly COMrades are using sophisticated tactics with a malware called MucorAgent to bypass security and stay hidden. This new twist in cyber-espionage is a game-changer—get the full story.

https://thedefendopsdiaries.com/unveiling-the-curly-comrades-a-new-era-in-cyber-espionage/

#cyberespionage
#mucoragent
#curlycomrades
#malwareanalysis
#cybersecurity

Unveiling the Curly COMrades: A New Era in Cyber-Espionage

Explore the Curly COMrades' sophisticated cyber-espionage tactics using MucorAgent malware to infiltrate and persist in systems.

The DefendOps Diaries