Phishing AWS Seizes Domains Used by Russia’s APT29 AWS announced the seizure of domains used by Russian hacker group APT29 in phishing attacks targeting Ukraine and other countries. Eduard KovacsOctober 25, 2024
Malware & Threats Google Catches Russian APT Reusing Exploits From Spyware Merchants NSO Group, Intellexa Google TAG publishes evidence showing identical or striking similarities between exploits used by Russia's APT29 and commercial spyware vendors. Ryan NaraineAugust 29, 2024
Nation-State TeamViewer Hack Officially Attributed to Russian Cyberspies TeamViewer has confirmed that the Russian cyberespionage group APT29 appears to be behind the recent hack. Eduard KovacsJuly 1, 2024
Cyberwarfare Russian APT29 Hackers Caught Targeting German Political Parties Russia’s APT29 hacking group is expanding targets to political parties in Germany using a new backdoor variant tracked as Wineloader. Ryan NaraineMarch 22, 2024
Malware & Threats Russian Cyberspies Targeting Cloud Infrastructure via Dormant Accounts US government and allies expose TTPs used by notorious Russian hacking teams and warn of the targeting of dormant cloud accounts. Ionut ArghireFebruary 26, 2024
Email Security HPE Says Russian Government Hackers Had Access to Emails for 6 Months HPE told the SEC that Russian state-sponsored threat group Midnight Blizzard had access to an email system for several months. Eduard KovacsJanuary 25, 2024
Data Breaches Microsoft Says Russian Gov Hackers Stole Email Data From Senior Execs A Russian government-backed hacking team broke into Microsoft’s corporate network and stole emails and attachments from senior executives. Ryan NaraineJanuary 19, 2024
Malware & Threats Russian Cyberspies Exploiting TeamCity Vulnerability at Scale: Government Agencies US, UK, and Poland warn of Russia-linked cyberespionage group’s broad exploitation of recent TeamCity vulnerability. Ionut ArghireDecember 14, 2023
Cyberwarfare Russia-Linked APT29 Uses New Malware in Embassy Attacks Russia-linked cyberespionage group APT29 has been observed using embassy-themed lures and the GraphicalNeutrino malware in recent attacks. Ionut ArghireJanuary 30, 2023