The Paper Werewolf cyberespionage group, active since 2022, targets Russian organizations through phishing emails with malicious macros to deploy tools like PowerRAT for remote access and data theft. Recently, they shifted to destructive actions, including registry modifications and password changes, to disrupt operations. Their use of advanced tools for persistence and credential theft underscores the growing sophistication of modern cyber threats.
What’s new on HivePro
Get through updates and upcoming events, and more directly in your inbox