Bulgarian government websites were briefly disrupted following a "large-scale" distributed denial-of-service attack launched by Russian hacktivist group Killnet on Saturday, according to The Record, a news site by cybersecurity firm Recorded Future.
Such an attack was targeted at the websites of Bulgaria's presidential administration, Interior Ministry, Defense Ministry, Constitutional Court, and Justice Ministry, for the country's provision of weapons to Ukraine, which is a betrayal to Russia, said Killnet.
"The government of Bulgaria is sentenced to network collapse and shame," Killnet wrote on its official Telegram group channel.
While Bulgaria has offered asylum to Ukrainian refugees and delivered humanitarian aid to Ukraine amid the ongoing conflict between Russia and Ukraine, it has not provided any weaponry to the country, contrary to Killnet's claims.
Bulgaria may have been targeted by Killnet, which is believed to be managed by Russian intelligence, due to its active political involvement, noted Bulgarian cybersecurity expert Yavor Kolev.
"This trend might also be perpetuated by the wider availability and increased quality of AI tools that lack prompt filtering, which cybercriminals can use to quickly assemble and debug their code," said Europol.
FLUXROOT exploited Google Cloud container URLs to establish phishing pages distributing the Grandoreiro banking trojan, which proceeded to exfiltrate credentials from widely used LatAm online payments platform Mercado Pago.
Illicit cyber activities conducted by Chinese cybercrime syndicate Vigorish Viper involving a sophisticated technology suite have been supported by the group's illegal betting platforms advertised by sports teams, including European football clubs and Indian cricket and kabaddi teams.