BlueAlpha, a Russian state-sponsored group, is actively targeting Ukrainian individuals and organizations by using spearphishing emails with malicious HTML attachments to deliver GammaLoad malware.  To evade detection, BlueAlpha is leveraging Cloudflare Tunnels to conceal their infrastructure and using DNS fast-fluxing for their C2 servers, as this ongoing campaign, active since early 2024, highlights the persistent […]

The post Russian BlueAlpha APT Exploits Cloudflare Tunnels to Distribute Custom Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Varshini

Source: gbHackers
Source Link: https://gbhackers.com/bluealpha-cloudflare-apt/