Security News European govt air-gapped systems breached using custom malware

Gandalf_The_Grey

Gandalf_The_Grey

Level 82
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,189
Content source
https://www.bleepingcomputer.com/news/security/european-govt-air-gapped-systems-breached-using-custom-malware/
An APT hacking group known as GoldenJackal has successfully breached air-gapped government systems in Europe using two custom toolsets to steal sensitive data, like emails, encryption keys, images, archives, and documents.

According to an ESET report, this happened at least two times, one against the embassy of a South Asian country in Belarus in September 2019 and again in July 2021, and another against a European government organization between May 2022 and March 2024.

In May 2023, Kaspersky warned about GoldenJackal's activities, noting that the threat actors focus on government and diplomatic entities for purposes of espionage.

Although their use of custom tools spread over USB pen drives, like the 'JackalWorm,' was known, cases of a successful compromise of air-gapped systems were not previously confirmed.

Air-gapped systems are used in critical operations, which often manage confidential information, and are isolated from open networks as a protection measure.
Click to expand...
www.bleepingcomputer.com

European govt air-gapped systems breached using custom malware

An APT hacking group known as GoldenJackal has successfully breached air-gapped government systems in Europe using two custom toolsets to steal sensitive data, like emails, encryption keys, images, archives, and documents.
www.bleepingcomputer.com www.bleepingcomputer.com
 
  • Like
Reactions: Brahman, simmerskool, SpiderWeb and 1 other person
Brahman

Brahman

Level 18
Verified
Top Poster
Well-known
Aug 22, 2013
883
According to the report, the infection spread through removable drives which was inserted firstly to an infected system and then to the air gaped system. If a system was so precious and because of its nature it was air gaped, then why do you want to insert a removable drive which was previously used on an insecure system ?
 
  • Like
  • +Reputation
Reactions: Game Of Thrones and Gandalf_The_Grey

Similar threads

Gandalf_The_Grey
    • Like
Security News Keyless systems in cars in 2024 still easy to hack
Replies
3
Views
1,760
Security News
simmerskool
simmerskool
oldschool
    • Like
    • Wow
    • HaHa
  • Locked
Security News US charges Russian military officers for unleashing wiper malware on Ukraine
Replies
11
Views
1,880
Security News
Marko :)
Marko :)
Gandalf_The_Grey
    • Like
    • Hundred Points
    • +Reputation
Malware News TrickMo malware steals Android PINs using fake lock screen
Replies
0
Views
1,234
Security News
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top