A newly identified cybercrime group has been repeatedly targeting Russian businesses with malware and ransomware as security firm Group-IB has found.
Oleg Skulkin, Group-IB’s senior DFIR analyst states that “this is very unusual for Russian-speaking gangs who have this unspoken rule about not working within Russia and post-Soviet countries.”
The group go by the name OldGremlin who begin their attacks by with sending out a phishing email with a malware file attached. Once this rips through the network it then deploys ransomware, asking for around $50,000.