Experts say that since the beginning of this year, APT31 has carried out a series of attacks against domestic companies in the fuel and energy sector and various media using Yandex.Disk. They also note that this is the first time hackers have used cloud storage from Russia.
The virus is sent via mail or other program vulnerabilities. And malware that uses Yandex.Disk as a control server is very difficult to detect.
Source: Ferra
