Turla APT Group Evolves Kazuar Malware into P2P Botnet for Stealthy Access

The Russia-linked advanced persistent threat (APT) group Turla has evolved its Kazuar malware into a modular peer-to-peer (P2P) botnet to establish stealthy, long-term access to compromised systems. Microsoft researchers identified the upgrade, which transforms the backdoor into a botnet designed for persistent control while evading detection. The malware enables attackers to maintain prolonged access to infected networks without relying on traditional command-and-control infrastructure. No specific technical indicators, dates, or CVE IDs were disclosed in the report. The primary impact involves enhanced operational security for Turla’s cyber espionage activities.