Russian Cybercriminal Group COLDRIVER Deploys New LOSTKEYS Malware in Espionage Campaign

The Russian cybercriminal group COLDRIVER has been observed distributing a new malware called LOSTKEYS as part of an espionage campaign using social engineering lures similar to ClickFix. LOSTKEYS is capable of stealing files from a predefined list of extensions and directories, as well as sending system information and running processes to the attacker. This campaign uses falsified CAPTCHAs to deceive users and deploy the malware.