Rustam Mirkasymov, Expert on cyber intelligence in Group-IB, believes that at the moment Silence is one of the most dangerous Russian-speaking groups, actually standing on a par with Cobalt and MoneyTaker.
On January 16, hackers started sending phishing emails on behalf of “Forum iFin-2019” with an attached ZIP archive, inside of which there is an invitation to the banking forum, as well as a malicious attachment Silence.Downloader aka TrueBot.
In Group-IB emphasize that this malware is used only by hackers Silence.
Hackers used a real announcement at the XIX International Forum “Electronic Financial Services and Technologies”, which will be held in Moscow on 19 and 20 February. An interesting fact is that the organizers announced the financial forum by e-mail a few hours before the hacker.
Recall that in November last year, the hacker group Silance conducted a massive cyber attack on Russian banks from the fake address of the Central Bank of Russia. At the same time, at the plenary session of the XI St. Petersburg International Innovation Forum it was stated that every eight seconds in Russia there is one cyber attack on the servers of companies and Banks. The average damage from one hacker attack is 30 million rubles. The majority of hacks and attacks occur during the night time when security systems are most vulnerable.