Show threadClaudius LinkApr 30, 2024
It looks like #kapeka was really just an hyped new detail discovered of an old attack
Datarainbow Privacy Assistant✅Apr 21, 2024
#kapeka logucuel #russe d’#espionnage https://www.numerama.com/cyberguerre/1727462-kapeka-un-nouveau-logiciel-malveillant-du-renseignement-russe-a-ete-repere.html
« Kapeka », un nouveau logiciel malveillant du renseignement russe, a été repéré

Un logiciel malveillant développé par un groupe lié au renseignement russe a été détecté en Estonie. Ce programme informatique ciblerait également

Numerama
Marcel SIneM(S)USApr 20, 2024
#Kapeka: Neuartige #Malware aus #Russland 🇷🇺 ? | Security https://www.heise.de/news/Kapeka-Neuartige-Malware-aus-Russland-9688970.html #Russia #Backdoor #GRU #Sandworm #KnuckleTouch
Kapeka: Neuartige Malware aus Russland?

Berichte über eine neuartige "Kapeka"-Malware tauchen allerorten auf. Die ist jedoch gar nicht neu und seit fast einem Jahr nicht mehr aktiv.

heise online
The Threat CodexApr 18, 2024
Kapeka: A novel backdoor spotted in Eastern Europe
#Sandworm #Kapeka
https://labs.withsecure.com/publications/kapeka
Kapeka: A novel backdoor spotted in Eastern Europe

This report provides an in-depth technical analysis of the backdoor and its capabilities, and analyzes the connection between Kapeka and Sandworm group. The purpose of this report is to raise awareness amongst businesses, governments, and the broader security community. WithSecure has engaged governments and select customers with advanced copies of this report. In addition to the report, we are releasing several artifacts developed as a result of our research, including a registry-based & hardcoded configuration extractor, a script to decrypt and emulate the backdoor’s network communication, and as might be expected, a list of indicators of compromise, YARA rules, and MITRE ATT&CK mapping

Scripter Apr 18, 2024
Russian APT Deploys New 'Kapeka' Backdoor in Eastern European Attacks
https://thehackernews.com/2024/04/russian-apt-deploys-new-kapeka-backdoor.html #Russia #Cyberwar #Malware #Kapeka #KnuckleTouch #Sandworm
Russian APT Deploys New 'Kapeka' Backdoor in Eastern European Attacks

A new stealthy backdoor malware called Kapeka, likely created by Russia's APT group Sandworm, has been targeting Eastern Europe.

The Hacker News
TutaApr 18, 2024

⚡ BREAKING⚡ State-sponsored hackers have been secretly infecting systems in Western countries with #Kapeka malware. 🕵️

But now, cybersecurity experts are on their trail!

Here's everything you need to know about the latest Russian cyberattack: 👉 https://tuta.com/blog/kapeka-malware-russia

The Russian Hacker Group Sandworm is Back: New Kapeka Malware Secretly Infecting Systems Since 2022

Novel malware recently found in Estonia links the Sandworm hacker group to cyberattacks in Europe, and may be a spillover from the Russia-Ukraine War.

Tutanota
securityaffairsApr 18, 2024
Previously unknown #Kapeka #backdoor linked to Russian #Sandworm #APT
https://securityaffairs.com/161987/hacking/kapeka-backdoor-linked-sandworm.html
#securityaffairs #hacking
Previously unknown Kapeka backdoor linked to Sandworm APT

Russia-linked APT Sandworm employed a previously undocumented backdoor called Kapeka in attacks against Eastern Europe since 2022.

Security Affairs
Scripter Apr 18, 2024
Russland: Neue russische Cyberwaffe entdeckt | ZEIT ONLINE
https://www.zeit.de/digital/2024-04/russland-schadsoftware-geheimdienst-angriff-cyberkriminalitaet #Russland #Cyberwar #Malware #Schadsoftware #Kapeka #KnuckleTouch #Sandworm
Russland: Neue russische Cyberwaffe entdeckt

Russlands Geheimdienst hat offenbar ein neues Werkzeug entwickelt, um Firmen auszuspionieren. Es gibt nur wenige Spuren, denn die Schadsoftware löscht sich teils selbst.

ZEIT ONLINE
Scripter Apr 17, 2024
Cyberkrieg: Aus Russland gesteuerte Schadsoftware entdeckt - DER SPIEGEL
https://www.spiegel.de/netzwelt/cyberkrieg-aus-russland-gesteuerte-schadsoftware-entdeckt-a-266b5bcd-3a96-4b5e-8d9e-591b62a163fa #Russland #Malware #Schadsoftware #Kapeka #KnuckleTouch #Sandworm
Virtuelle Hintertür in Windows: IT-Experten stoppen aus Russland gesteuerte Schadsoftware

Russlands Geheimdienst nutzt offenbar eine Software, die nun aufgeflogen ist. Sie installiert eine Windows-Hintertür als Erweiterung für das Textprogramm Word und macht so Computersysteme angreifbar.

DER SPIEGEL
Claudius LinkApr 17, 2024

I haven't seen a lot of posts regarding the newly "discovered" Russian backdoor #Kapeka from any of the usual suspects. Only articles in general newspapers.

Is this just hyped by a security firm?

#Cybersecurity