Techly NewsGet the app

Get the latest tech news

Exposing Russian EFF Impersonators: The Inside Story on Stealc and Pyramid C2


Discover how an open directory exposed a threat actor impersonating EFF to target gamers and how we mapped their infrastructure to Stealc & Pyramid C2.

A threat group impersonating the Electronic Frontier Foundation (EFF) is targeting Albion Online players through decoy documents designed to lend credibility while malware executes in the background. While real-money transactions are against the game's terms of service and can result in permanent bans, third-party markets exist where in-game assets are exchanged for money, making player accounts a lucrative target. By impersonating reputable organizations like the Electronic Frontier Foundation (EFF), attackers disseminated phishing messages that directed users to malicious infrastructures hosting both decoy documents and malware.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of Russian

Russian

Photo of inside story

inside story

Photo of stealc

stealc

Related news:

News photo

DHS says CISA will not stop monitoring Russian cyber threats

News photo

Trump administration retreats in fight against Russian cyber threats | US national security

News photo

German Industry Begins Calling For Return to Russian Gas

« Rayhunter – Rust tool to detect cell site simulators on an orbic mobile hotspot
Russian crypto exchange Garantex seized by law enforcement operation »