| At the beginning of 2024, F.A.C.T. discovered a new cybercrower group called Reaverbits |
|---|
| This group is engaged in the sending of harmful letters to Russian organizations on behalf of various companies and state ministries. The name Reaverbits is symbolic: “reaver” translates as “thief”, which reflects the essence of their operation to abduct the data using the Metastealer styler, and “BITS” refers to the use of the words “Bitbucket” and “Bitrix” in URLs. |
Reaverbits has currently carried out at least five malicious mailings, two of which fell on December 2023, two for January 2024 and one in May of the same year. The goals of attacks were companies from various sectors: retail, telecommunications, processing, agricultural industry and federal fund.
Details of the attacks:
Sending#1: Gift card
/Reports, release notes, official announcements.