all InfoSec news
Kapeka: A new toolkit in Arsenal of SandStorm
Malware Analysis, News and Indicators - Latest topics malware.news
FAST FACTS
Kapeka, also known as KnuckleTouch, originally appeared in mid-2022 but was formally tracked in 2024 due to limited-scope attacks, particularly in Eastern Europe.
The Kapeka backdoor is linked to the Sandstorm Group, which is run by Russia’s Military Unit 74455 and is notorious for disrupting cyber activity.
Sandstorm’s operations, including Kapeka’s deployment, are tied to geopolitical tensions, specifically targeting Ukraine’s critical infrastructure.
Kapeka exhibits advanced functionalities, including initialization, C2 communication, task execution, and persistence mechanisms, posing challenges to …
arsenal attacks backdoor cyber cyber activity eastern europe europe facts fast kapeka backdoor military operations run russia sandstorm scope toolkit unit 74455