Turla Updates KAZUAR Backdoor to Target Ukraine’s Defense Sector
Turla Updates KAZUAR Backdoor to Target Ukraine’s Defense Sector
Threat Level
Attack Report
For a detailed threat advisory, download the pdf file here
Summary
Turla’s Kazuar variant remains a persistent threat, accompanied by a new .NET-based backdoor, DeliveryCheck, attributed to Russian actor Turla. The attacks target Ukraine’s defense sector, utilizing tactics like PowerShell DSC and signaling a dynamic cybersecurity landscape.
To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.