It has been reported that security researchers have uncovered a new Russian-based hacking group that they claim has been focusing on the past three years on corporate espionage, targeting companies across the world to steal documents that contain commercial secrets and employee personal data. Named RedCurl, the activities of this new group have been detailed in a 57-page report released today by cyber-security firm Group-IB. The company has been tracking the group since the summer of 2019 when it was first called to investigate a security breach at a company hacked by the group. Since then, Group-IB said it identified 26 other RedCurl attacks, carried out against 14 organizations, going as far back as 2018.
It should not come as a surprise that another string of hacks has impacted corporations around the world, as well-funded and motivated cyber espionage teams have been stealing the shirts off their proverbial backs for decades. First and foremost, organisations turn the tables on cyber adversaries by increasing the amount of threat hunting it is doing in its environment, hiring trained security analysts to investigate suspicious activity and use a qualified provider of endpoint security technology to protect mobile devices, laptops, iPads, work stations and all connected devices.
In this particular string of breaches, threat hunting is the best cyber crime deterrent your money can buy as it gives a company an opportunity to root out suspicious behavior and activity before material damage occurs and prevent hackers from setting up shop inside a network. Basically, the hacker has nowhere to hide.
Those groups engaging in cybercrime activity, regularly test the resiliency of networks in both the public and private sector. Organisations in the UK and US may not be facing a traditional enemy with guns and tanks on the battlefield, but they are constantly fighting a host of adversaries in the digital space. Unless we work with our international allies and devise a better strategy to confront these threats, it is likely hackers will continue to carry out attacks that result in finance gain and significant losses for the defenders.