A previously undocumented threat actor dubbed YoroTrooper has been targeting government, energy, and international organizations across Europe as part of a cyber espionage campaign that has been active since at least June 2022.
“Information stolen from successful compromises include credentials from multiple applications, browser histories and cookies, system information and screenshots,” Cisco