One of the highest-tier Russian hacking groups goes by the name Turla. They are believed to be funded by the Russian government and are likely involved in all kinds of operations that aim at serving Russian interests abroad. President Putin has denied using the services of hackers countless times, but evidence gathered by cybersecurity experts would suggest otherwise. In 2017, a particularly vicious campaign was carried out by the Turla hacking group targeted companies operating in the United Kingdom. This operation used three of Turla’s hacking tools – Neuron, Nautilus, and the Snake rootkit. It is important to note that the Neuron threat does not belong to the LightNeuron malware family, which has also been developed by the Turla hacking group.
Campaigns in the United Kingdom and Eastern Europe
When following the traces of this campaign, it became evident that the Turla hacking group opted to use the Neuron malware almost exclusively with the Nautilus threat. Despite the fact that most of the activity of the Neuron threat was concentrated in the United Kingdom, malware researchers found out that there may have been attacks targeting states located in Eastern Europe too. The campaigns in the United Kingdom were carried out with the help of phishing emails, which were specifically tailored for the targets. However, the campaigns launched in Eastern Europe took a different approach – the malware was propagated via bogus Adobe Flash player updates.
Once the Neuron malware infiltrates a target, it will make sure to gain persistence on the system. Then, the attackers will be able to steal sensitive data, collect information about the host’s hardware and software, and execute remote commands.
The Turla hacking group is very serious when carrying out their attacks – they make sure to constantly introduce updates to their hacking tools in order to remain one step ahead of cybersecurity researchers. This makes the Turla hacking group a particularly difficult to combat enemy, and their attacks often prove to be very effective.
Do You Suspect Your PC May Be Infected with Neuron & Other Threats? Scan Your PC with SpyHunterSpyHunter is a powerful malware remediation and protection tool designed to help provide PC users with in-depth system security analysis, detection and removal of a wide range of threats like Neuron as well as a one-on-one tech support service. Download SpyHunter's FREE Malware Remover
Security Doesn't Let You Download SpyHunter or Access the Internet?Solutions: Your computer may have malware hiding in memory that prevents any program, including SpyHunter, from executing on your computer. Follow to download SpyHunter and gain access to the Internet:
- Use an alternative browser. Malware may disable your browser. If you're using IE, for example, and having problems downloading SpyHunter, you should open Firefox, Chrome or Safari browser instead.
- Use a removable media. Download SpyHunter on another clean computer, burn it to a USB flash drive, DVD/CD, or any preferred removable media, then install it on your infected computer and run SpyHunter's malware scanner.
- Start Windows in Safe Mode. If you can not access your Window's desktop, reboot your computer in "Safe Mode with Networking" and install SpyHunter in Safe Mode.
- IE Users: Disable proxy server for Internet Explorer to browse the web with Internet Explorer or update your anti-spyware program. Malware modifies your Windows settings to use a proxy server to prevent you from browsing the web with IE.