Cloud Atlas Deploys VBCloud Malware: Over 80% of Targets Found in Russia

Cloud Atlas, a threat actor active since 2014, is using a new malware called VBCloud in cyber attacks targeting primarily Russian users. The attack chain involves phishing emails with malicious documents exploiting vulnerabilities to download VBShower, which then installs PowerShower and VBCloud. VBCloud, utilizing public cloud storage, harvests system information and steals files, while PowerShower facilitates network infiltration.