General description
The Silence cybercrime group appeared in 2016 and attacked organizations in the credit and financial sector, mainly in Russia. The group's objective is to steal cash from hacked ATMs, card processing and AWS-CBR. Since 2018, the group has expanded the geography of its attacks and now attacks organizations all over the world. In some attacks, the group used tools from the TA505 group, which may indicate their cooperation.
Objectives
- Cash theft
Tools
- Silence Downloader
- Silence MainModule
- Silence ProxyBot
Targeted sectors:
- The finance sector