Belarusian Hackers Cyber Attacks of Ukraine
A Belarusian threat actor known as Ghostwriter (aka UNC1151)
A Belarusian threat actor known as Ghostwriter (aka UNC1151) has been spotted leveraging the recently disclosed browser-in-the-browser (BitB) technique as part of their credential phishing campaigns exploiting the ongoing Russo-Ukrainian conflict.
"Ghostwriter actors have quickly adopted this new technique, combining it with a previously observed technique, hosting credential phishing landing pages on compromised sites," Google's Threat Analysis Group (TAG) said in a new report, using it to siphon credentials entered by unsuspected victims to a remote server. - Full Info