When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
Analysis has revealed that hacking group Head Mare exclusively targets companies in Russia and Belarus.
The group exploits the well knownCVE-2023-38831 vulnerability in WinRAR, used to hide malware in archived files.
The custom made malware PhantomCore and PhantomDL is used to infiltrate the rig of the target.
The hackers encrypt the devices with Lockbit or Babuk, and deliver a ransom for the data encryption.
ViaSecureList
