The same hackers who turned out the lights at Ukrainian utilities last December have been running attacks against the same country’s banks over recent months according to ESET. Tim Erlin, Sr. Director, Product Management at Tripwire commented below.
Tim Erlin, Sr. Director, Product Management at Tripwire:
“While the analysis states that this malware campaign has targeted the Ukrainian financial sector, there’s little information provided about how that specific conclusion was drawn.
The relationship between TeleBots and BlackEnergy isn’t entirely clear. There are some demonstrable connections in tools and techniques, but whether the attackers are the same people, part of a tool sharing community, or simply getting their malware from the same source is hard to say.
The phishing aspect of these attacks aren’t sophisticated, and are hardly a new technique.”