Security researchers uncovered a new attack targeting the financial institution such as banks in Kazakhstan, and the attack believed to be initiated by one of the Financially motivated cyber-crime gang “Cobalt”.
Cobalt group actively targeting victims in various countries since at least 2016, they particularly focus on the bank’s network to compromise the internal components such as ATM and card processing system.
Also, researchers believe that this gang was ultimately responsible for SWIFT banking system attack that causes million dollar damage.
In order to compromise the company or bank sectors, they are sending malicious emails that look like a legitimate one from other trusted partners.
Threat actors from this group building a tailored document to masquerade as a legitimate one with a valid certificate and planed well before executing the attack to evade the detection.