The backdoor and the Buhtrap encoder were distributed using Yandex.Direct
To target a cyberattack on accountants, you can use work papers that they search for on the web. This is how a cybergroup has been operating in the past few months, distributing the well-known Buhtrap and RTM backdoors, as well as encryption and software for stealing cryptocurrencies. Most targets are located in Russia. The attack was implemented by placing malicious ads in Yandex.Direct. Potential victims went to a website where […]