Bookmark Article
The Russia-aligned threat actor TAG-110 has initiated a spear-phishing campaign aimed at Tajikistan, utilizing macro-enabled Word templates as the initial payload. This marks a shift from their previous tactics, which involved the use of an HTML Application (.HTA) loader known as HATVIBE, according to an analysis by Recorded Future’s Insikt Group. The evolving methods of TAG-110 highlight their adaptability in cyber-attack strategies, emphasizing the need for heightened vigilance against such threats.
