APT28
FBI Warns: Ubiquiti EdgeRouter is STILL Not Secure
Richi Jennings | | APT28, Botnet disruption, Botnet Takedown, botnets, CVE-2023-23397, EdgeRouter, Fancy Bear, FBI warning, GRU, IC3, IC3.gov, Military Unit 26165, nsa, NSA/CISA, NTLM, NTLM Authentication, NTLM hash, NTLM leak, ntlm relay, Russia, russia hacker, russia-based, russian, Russian Cyber Interests, Russian Cyber War, SB Blogwatch, Ubiquiti, Ubiquiti breach, Ubiquiti Inc., Ubiquiti Networks, US FBI
GRU APT28 is back again: Fancy Bear still hacking ubiquitous gear, despite patch availability ...
Security Boulevard
Feds Disrupt Botnet Used by Russian APT28 Hackers
Jeffrey Burt | | APT28, Botnet disruption, china espionage, DOJ (Department of Justice), FBI, russia hacker
Federal law enforcement kicked Russian state hackers off a botnet comprising at least hundreds of home office and small office routers that had been pulled together by a cybercriminal group and co-opted ...
Security Boulevard
‘But His Emails!’ — Ukrainian Hackers Hack Hillary Hacker
Richi Jennings | | APT28, DCLeaks, Democratic National Committee, democrats, DNC, DNC hack, Fancy Bear, FBI, GRU, hillary clinton, Russia, SB Blogwatch, Sergey Aleksandrovich Morgachev, Strontium, Ukraine
Beware Fancy Bears Bearing Gifts: Confirms DCLeaks caper was by APT28. Also that APT28 is Russian military unit ...
Security Boulevard
Did U.S. Charge Klyushin to Reveal 2016 DNC Hack Info?
Richi Jennings | | APT28, Democratic National Committee, DNC hack, Fancy Bear, GRU, SB Blogwatch, Vladislav Klyushin
Vladislav Klyushin is thought to be helping feds learn more about the 2016 DNC breach. But something doesn’t add up ...
Security Boulevard
Russia, China, Iran Meddle in 2020 Election (Unsurprisingly)
Richi Jennings | | APT28, APT31, APT35, Charming Kitten, china, Election Manipulation, Fancy Bear, Iran, Phishing, Russia, SB Blogwatch
It comes as no surprise to hear that Russia is up to its old tricks. China and Iran are also in on the game ...
Security Boulevard
Drovorub: Russia Pushing Invisible Malware, say NSA and FBI
Fancy Bear is at it again. This time, it’s said to be infecting Linux machines with Drovorub—rootkit malware that’s very hard to detect ...
Security Boulevard
Russia’s GRU Military Unit Behind Previously Unknown Linux Malware, NSA Says
The National Security Agency (NSA) and the Federal Bureau of Investigation (FBI) have revealed the existence of a new piece of malware named Drovorub, most likely developed by a military unit of ...
Austria Repels Foreign State-Sponsored Attempt to Hack Foreign Ministry
Austria’s Foreign Ministry fought off a cyberattack over the weekend that it says was likely directed by a foreign state. The ministry said the attack started on Jan. 4 and might continue ...
Czech Republic Blames Russia for Yearlong Email Breach
Lucian Constantin | | APT28, APT29, CozyBear, cyberespionage, Czech Republic, intelligence service, Russia, Sofacy, Turla
The Czech government’s Security Information Service (BIS) revealed in a report that hackers associated with the Russian government are responsible for an email breach, compromising the email system of the country’s Ministry ...
Security Boulevard
Cyber Security Roundup for November 2018
Dave Whitelegg | | adobe, amazon, Apache, APT28, British Airways, cisco, cyber security roundup, DarkGate, Data breach, facebook, hsbc, kaspersky, Marriott, mcafee, NCSC, TA505, talktalk, TrickBot, Uber, Vision Direct
One of the largest data breaches in history was announced by Marriott Hotels at the end of November. A hack was said to have compromised up to a mind-blowing "half a Billion" ...