In a calculated cyber-espionage campaign, the Russian state-sponsored hacking group Sandworm (APT44), affiliated with the GRU (Russia’s Main Intelligence Directorate), has been exploiting pirated Microsoft Key Management Service (KMS) activation tools to infiltrate Windows systems in Ukraine. This operation, active since late 2023, leverages trojanized KMS activators and fake Windows updates to deploy malware, posing … Continue reading Russian Hackers Weaponize Microsoft KMS to Breach Windows Systems