CyberSecurity News
Google Details Turla's New STOCKSTAY Backdoor Used in Ukraine Espionage Attacks
AI summary
Google's Threat Intelligence Group has identified a new .NET backdoor called STOCKSTAY, attributed to the Russian state-sponsored threat actor Turla. This backdoor has been used in espionage attacks against government and military organizations in Ukraine. Additionally, entities with an interest in Italian foreign policy have also been targeted with STOCKSTAY. The backdoor is described as being continually developed by Turla. STOCKSTAY has been deployed against specific organizations in Ukraine and those related to Italian foreign policy interests. The backdoor affects Windows systems.
This is an AI-generated brief aggregated by HackerFeeds for convenience and grounded in the source’s own summary; the related CVE, threat-group and country data is from HackerFeeds’ own indexes. The original article is the authoritative source — all rights belong to The Hacker News.