top of page
perceptive_background_267k.jpg

Bloody Wolf Expands Java-based NetSupport RAT Attacks in Kyrgyzstan and Uzbekistan

Published:

27 November 2025 at 18:13:00

Alert date:

5 December 2025 at 08:03:22

Source:

thehackernews.com

Click to open the original link from this advisory

The threat actor Bloody Wolf has been conducting cyber attack campaigns targeting Kyrgyzstan since at least June 2025, delivering NetSupport RAT malware. The campaign has expanded as of October 2025 to also target Uzbekistan. The attacks utilize Java-based NetSupport RAT to compromise systems in these Central Asian countries. Research was conducted by Group-IB in collaboration with Ukuk, a state enterprise. This represents an ongoing active campaign with geographic expansion indicating escalating threat activity.

Technical details

Mitigation steps:

Affected products:

NetSupport RAT

Related links:

https://thehackernews.com/2025/11/bloody-wolf-expands-java-based.html

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page