Blog | G5 Cyber Security

Turla APT malware now retrieves C&C address from Instagram comments

Malware researchers at security firm ESET have spotted a new piece of malware used by Turla APT in cyber attacks. The malicious code leverages comments posted to Instagram to obtain the address of its command and control (C&C) servers. The comment reads #2hot make loved to her, uupss #Hot #X, and Zero is a non-printable character called Joiner normally used to separate emojisable character. The group is still active and it is developing new hacking tools and empowering the existing ones.”]

Source: https://securityaffairs.co/wordpress/59833/cyber-warfare-2/turla-apt-instagram-comments.html

Exit mobile version