Cyber espionage of air-gapped environments and Covid-19 themed attacks: Q2 2020 in review

In a report published today, ESET researchers have outlined the threats and the trends that characterised the second quarter of 2020.

Perhaps unsurprisingly, researchers found that Covid-19 themed phishing attacks are alive and well, and continued into Q2, confirming how the coronavirus pandemic has defined this year in cybercrime.

ESET researchers also discovered a new cyber espionage toolkit tailored for collecting and exfiltrating sensitive documents from air-gapped systems. Dubbed Ramsay, the toolkit provides a series of capabilities monitored via a logging mechanism intended to assist operators by supplying a feed of actionable intelligence to conduct exfiltration, control, and lateral movement actions. It can also supply information for behavioural and system statistics of the compromised systems.