A Russia-linked cyberespionage group, tracked as TAG-110, has made over 60 victims in Asia and Europe. TAG-110 has been active since at least 2021, targeting government, education, and research entities in Central Asia, India, Israel, Mongolia, and Ukraine with malware such as HatVibe, CherrySpy, LogPie, and StillArch. Since July 2024, Recorded Future identified 62 unique TAG-110 victims. The group has been observed relying on malicious email attachments and the exploitation of vulnerable internet-facing services. “TAG-110’s activities align with Russia’s geopolitical objectives, particularly in Central Asia, where Moscow seeks to maintain influence amid strained relations,” Recorded Future says.

Read more: https://www.securityweek.com/russian-cyberespionage-group-hit-60-victims-in-asia-europe/