Blackjack

Malware updated 3 months ago (2024-11-29T14:53:20.962Z)

Download STIX

Preview STIX

Blackjack is a malicious software (malware) employed by the Ukrainian Blackjack group, designed to infiltrate and exploit computer systems. The malware has been used against Russian targets, where it disrupts operations, steals personal information, and can potentially hold data hostage for ransom. It infiltrates systems through suspicious downloads, emails, or websites, often without the user's knowledge. Once inside, it wreaks havoc on the system, causing significant damage. The Blackjack group has been linked to another previously known group, Twelve, as detailed in our report. Both groups use similar tools, malware, and procedures, distributing and executing their harmful programs using the same methods. Their targets are also similar, primarily focusing on organizations located in Russia. This evidence suggests a close connection between the two entities. However, upon further investigation, we suspect that the Blackjack and Twelve groups may not just be independent entities with similar targets and methods. Instead, they appear to be part of a unified cluster of hacktivist activity aimed at Russian organizations. This implies a larger, coordinated effort to disrupt and exploit these targets, indicating a more serious threat than initially perceived.

Description last updated: 2024-11-28T11:44:06.354Z

What's your take? (Question 1 of 0)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Malware

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Source Document References

Information about the Blackjack Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
Securelist	3 months ago	Malware report for Q3 2024: threat overview
Securelist	3 months ago	Kaspersky report on APT trends in Q3 2024
Securityaffairs	8 months ago	Security Affairs Malware Newsletter - Round 3
Securityaffairs	8 months ago	Security Affairs Malware Newsletter - Round 1
Securityaffairs	9 months ago	Security Affairs newsletter Round 477 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	8 months ago	Security Affairs newsletter Round 478 by Pierluigi Paganini – INTERNATIONAL EDITION
Securityaffairs	8 months ago	Security Affairs Malware Newsletter - Round 3
Securityaffairs	7 months ago	SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 6
Securityaffairs	7 months ago	security-affairs-malware-newsletter-round-5
Securelist	6 months ago	Analysis of the BlackJack group: techniques, tools, and similarities with Twelve
Securityaffairs	a year ago	Blackjack group used ICS malware Fuxnet against Russian targets
CERT-EU	a year ago	Ukraine's 'Blackjack' hackers breached 500 Russian military sites and caused chaos, says military intelligence
CERT-EU	a year ago	Ukraine's 'Blackjack' Hackers Breach 500 Russian Military Sites, Cause Chaos \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #hacker \| National Cyber Security Consulting
CERT-EU	a year ago	Russian ISP targeted by pro-Ukrainian hackers as payback for Kyivstar attack
CERT-EU	a year ago	Pro-Ukraine hackers breach Russian ISP in revenge for KyivStar attack
CERT-EU	a year ago	Blackjack hackers target Moscow ISP in retaliation for Kyivstar cyberattack \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #hacker \| National Cyber Security Consulting
CERT-EU	a year ago	Ukrainian hackers hit Russian utility company \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #hacker \| National Cyber Security Consulting