🚨 Operation BarrelFire 🚨
A phishing campaign targeting Kazakhstan’s energy sector has been attributed to Noisy Bear (likely Russian).
🔎 Attack path:
Phishing email → ZIP w/ LNK downloader → PowerShell DOWNSHELL → DLL implant (reverse shell).

Infra tied to Russia-based Aeza Group (sanctioned).

Follow @technadu for more infosec coverage.

#CyberSecurity #NoisyBear #Phishing #EnergySector