• Sat. Oct 14th, 2023

Elusive Leprechaun Strikes: Over 30 Organizations in Russia and Belarus Targeted by BI.ZONE Cyberattacks

Avatar photo

ByEsme Greene

Aug 7, 2023
Leprechaun Strikes: BI.ZONE Targets Belarus
Esme Greene
Latest posts by Esme Greene (see all)

In a groundbreaking discovery, cybersecurity specialists at BI.ZONE have uncovered a series of highly sophisticated attacks orchestrated by the Sneaking Leprechaun group. Unlike conventional ransomware attacks, these cybercriminals employed a novel approach to breach the systems of more than 30 organizations in Russia and Belarus.

Through meticulous analysis, BI.ZONE researchers have unveiled the exploitation of vulnerabilities within outdated versions of widely-used platforms, including Bitrix, Confluence, and Webmin, which were installed on Linux servers. Once the perpetrators successfully infiltrated the targeted systems, they deployed their own malicious software to maintain control.

In a remarkable twist, the hackers opted for a more cunning strategy instead of employing traditional data encryption and ransom demands. Evading detection, they meticulously scrutinized the copied data, handpicking the most valuable information. Subsequently, the attackers initiated contact with the victim organizations, providing undeniable proof of their compromised data. It was at this critical juncture that the ransom demands were made, accompanied by the threat of public data exposure.

According to esteemed experts at BI.ZONE, Sneaking Leprechaun has wreaked havoc on over 30 organizations throughout Russia and Belarus within the past year. Among the primary targets were software development and integration companies. Notably, victims encompass a broad spectrum of industries, including finance, logistics, medicine, industry, and state institutions.

Avatar photo

Esme Greene

Esme brings a wealth of knowledge and experience to our website, specializing in all aspects of DarkWeb security. With a deep understanding of the intricate workings of the DarkWeb and its associated cybersecurity risks, Esme curates insightful and informative content for our readers.