To Be (A Robot) or Not to Be: New Malware Attributed to Russia State-Sponsored COLDRIVER

GTIG has not observed a single instance of LOSTKEYS since publication. Instead, GTIG has seen new malware used more aggressively than any other previous malware campaigns. The new malware, which GTIG attributes directly to COLDRIVER, has undergone multiple iterations since discovery.