
The New Target: Immigrations
TA4563 Evilnumimmigrantimmigrate
Financial and investment entities, including those involved in the decentralized finance (DeFi) and cryptocurrency markets, are being actively targeted by a group of hackers identified as TA4563, who are leveraging Evilnum malware.
Indicators of Compromise
No domains found for this campaign
APT Groups1
Evilnum
EvilNumDeathStalkerKNOCKOUT SPIDERJointwormTA4563KNOCKOUTSPIDEREvilnum
Campaign Guidance
Remediation, mitigation, notes, history and related intelligence
Reports & References1
Observed Countries9
AE (3)
AF (646)
BG (415)
CY (504)
DE (811)
KW (25)
MT (368)
RU (502)
UA (462)