Russian State Hackers Develop New Malware Tools

Published 2025-10-22 15:04:30 | www.linkedin.com
Malware Cybersecurity Threat Intelligence Actor: Coldriver (Star Blizzard, Callisto) Sector: Government, High-Value Targets Region: Russia

🎙️ Paranoid Newscast

🎭
Credibility
70%
📊
Risk Score
72%
🎲
Likelihood
9/10
💥
Impact
8/10
🛡️
Priority
4/5
Russian state-backed hacking group Coldriver has introduced three new malware strains, NOROBOT, YESROBOT, and MAYBEROBOT, following the exposure of their previous tool, LostKeys. These new tools are designed to evade detection and target high-value data.

In today’s cybersecurity news, Russian state hackers replace burned malware with new tools. Google’s threat intelligence team reports that the Russian state-backed hacking group Coldriver, also known as Star Blizzard or Callisto, has developed three new malware strains: NOROBOT, YESROBOT, and MAYBEROBOT, after its previous LostKeys tool was exposed in May. The new tools are said to be deployed “more aggressively than any previous campaigns,” designed to evade detection and steal data from high-value targets. Google believes Coldriver is now using custom malware to gather deeper intelligence from already-phished victims.