Google Identifies New Malware Linked to Russia-Based Hacking Group

Alphabet's Google has announced that it has identified a new type of malware called "LOSTKEYS" that is linked to the Russian-based hacking group Cold River. According to Wesley Shields, a researcher with Google Threat Intelligence Group, this malware marks a new development in the toolset of Cold River.

Cold River is primarily known for stealing login credentials from high-profile targets, including those within NATO governments, non-governmental organizations, and former intelligence and diplomatic officers. The central goal of these campaigns has been intelligence collection in support of Russian strategic interests.

Recent targets observed by Google include current and former advisers to Western governments and militaries, as well as journalists, think tanks, and NGOs, and unnamed individuals connected to Ukraine. This latest malware is part of a broader pattern of behavior by Cold River, which has been linked to high-profile campaigns in the past.

In 2022, Cold River targeted three nuclear research laboratories in the US, and also published the private emails of former British spymaster Richard Dearlove alongside pro-Brexit individuals. These operations were revealed in May 2022.

Google's identification of this new malware is a significant development in the fight against cyber threats. The company's threat intelligence team works to monitor and analyze malicious activity, providing critical information to help organizations and individuals stay safe online.

By staying informed about emerging threats like LOSTKEYS, we can all do our part to protect ourselves and our communities from the harm caused by hacking groups like Cold River. Stay vigilant, and stay informed with the latest news and analysis from Google and other trusted sources.

To stay up-to-date on the latest cyber threats and security updates, subscribe to our Chief Editor's Week in Review newsletter, which delivers a weekly digest of top stories and thought-provoking articles. You can also join our channel for the top reads of the day on your preferred chat app.