- Hacker group Rare Werewolf targets Russian entities with phishing to steal data and mine Monero.
- Group uses stealth tactics, including night-time operations and Russian-language lures.
- CBI arrests Indian cyber scammer in ₹2.8 crore crypto seizure linked to North American fraud.
Rare Werewolf, a cybercriminal APT group also known as Librarian Ghouls or Rezet, has been targeting Russian-speaking organizations with sophisticated phishing attacks.
Meanwhile in India, the CBI has intensified its fight against cybercrime through Operation Chakra-V, arresting one Rahul Arora for running a tech support scam aimed at North American victims.
From Hackers to Handcuffs: Global Cybercrime Ring Exposed
Kaspersky’s analysis has exposed an advanced threat actor known as Rare Werewolf, which is exploiting phishing attacks tailored for Russian targets. These emails appear to come from trusted sources and contain attachments that launch malware capable of both surveillance and resource hijacking. Their main goal is to harvest credentials and monetize infected systems through crypto mining.
The malware’s stealthy configuration—scheduled to run only in the early hours—demonstrates the group’s awareness of typical user behavior and corporate security gaps. Victims, mainly industrial enterprises and engineering institutions, often remain unaware their systems are compromised until much later. The group is also using cloned Russian domains to host phishing pages, including fakes of Mail.ru.
In India, the Central Bureau of Investigation launched a sweeping action under ‘Chakra-V’ targeting cybercriminals exploiting international victims. Rahul Arora was arrested during raids in which large amounts of unaccounted cash and crypto assets were recovered. Authorities say the gang mimicked government officials and tech support staff to trick people in the U.S. and Canada.
Beyond arrests, the CBI showcased its upgraded cyber capabilities, particularly its tools for handling virtual digital assets—a critical step in fighting crimes that increasingly rely on cryptocurrencies. As scammers go global, agencies are adapting to trace blockchain-based money trails and dismantle fraud networks at their root.
As cybercrime grows more sophisticated and cross-border, the need for global vigilance, real-time intelligence sharing, and advanced digital asset tracking is greater than ever.
“Cybersecurity today is not just about firewalls and passwords—it’s a race against invisible adversaries using our trust and tech against us.”
