Uptick in TA505 Financial Institutions Attacts

TA505 is a prolific Russian threat actor known for attacks against multiple industries with a variety of malware since 2014. In July 2019, Wapack Labs analyzed the intrusion infrastructure associated with TA505’s attacks. The network is comprised of multiple IPs and domains, many of which were spoofed to appear like domains belonging financial institutions.

To read the full article in our portal, and find an archive of related reporting, follow this link to - https://redskyalliance.org/