Coldriver: Subversive and swole
An in-depth look at COLDRIVER, the group responsible for years of phishing and multiple hack and leak operations targeting think-tanks, NGOs and policy experts across Europe and the United States. This talk will cover the history of COLDRIVER, from their early activity in 2014, through 2023 indictments, and multiple public disclosures. They have remained a consistent threat throughout, remaining effective at conducting highly targeted and personalized phishing campaigns. We will provide unique insights into their targeting and TTPs as well as changes in their operations over the years in response to these disclosures.