<ul><li>Hackers are distributing the MEDUZASTEALER malware via Telegram, posing as Reserve+ technical support from the Ministry of Defense of Ukraine.</li><li>The Cyber Emergency Response Team of Ukraine (CERT-UA) has issued an alert regarding spoofed phishing attacks that distribute MEDUZASTEALER.</li><li>The malware is being spread through suspicious messages prompting users to install 'special software' and containing an archive named 'RESERVPLUS.zip'.</li><li>Once executed, the malware exfiltrates files with specific extensions and deletes itself to bypass security software.</li></ul>

MEDUZASTEALER Detection: Hackers Distribute Malware Masquerading the Sender as Reserve+ Technical Support via Telegram Messaging Service

Discover more