But Turla it seems to be not:

> […] Turla and Tomiris are separate actors. Tomiris is undoubtedly Russian-speaking, but its targeting and tradecrafts are significantly at odds with what we have observed for Turla. In addition, Tomiris’s general approach to intrusion and limited interest in stealth are significantly at odds with documented Turla tradecraft. […]

#turla #threat #tomiris

«Tangled Up: '#Tomiris' #APT Uses #Turla #Malware, Confusing Researchers»

https://www.darkreading.com/threat-intelligence/tangled-up-tomiris-apt-uses-turla-malware-confusing-researchers

Happy Monday everyone! Kaspersky researchers have been tracking a group known as #Tomiris since September 2021. They have concluded that the groups goal is to steal internal documents (intellectual property) and targets countries in the Central Asia, or CIS, region and their payloads have been created using multiple programming languages. They have a large toolset but prefer to leverage commercial or open-source #RATs. For more details, check the link below for the full report! Happy Hunting!

Tomiris called, they want their Turla malware back
https://securelist.com/tomiris-called-they-want-their-turla-malware-back/109552/

#CyberSecurity #ITSecurity #InfoSec #BlueTeam #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting #readoftheday