APT28
APT28 Pulls Out New Malware Cannon
Lucian Constantin | | APT28, cyberespionage, Fancy Bear, hidden cobra, Lazarus Group, Sofacy, trojan program
The notorious Russian cyberespionage group known as APT28, Fancy Bear and Sofacy is targeting government organizations using a new Trojan program called Cannon. Researchers from Palo Alto Networks detected new spear-phishing campaigns ...
Security Boulevard
Cyber Security Roundup for October 2018
Dave Whitelegg | | adobe, amazon, Application Security, APT1, APT28, APT38, aws, British Airways, cisco, Cobalt, cyber security roundup, ddos, facebook, GDPR, Huawei, kraken, Microsoft, nation-state, NCSC, Ransomware
Aside from Brexit, Cyber Threats and Cyber Attack accusations against Russia are very much on the centre stage of UK government's international political agenda at the moment. The government publically accused Russia's ...
APT28 Gets the Spotlight, But Turla Remains Russia’s Elite Hacking Unit
Over the past two years, the Russian cyberespionage group known as APT28, Sofacy or Fancy Bear, has been the focus of many press reports, threat analyses, Western intelligence investigations and, more recently, ...
Security Boulevard
Russian Hacker Group APT28 Used UEFI Rootkit on Select Targets
Security researchers have found malicious versions of the LoJack anti-theft software on computers belonging to government agencies from the Balkans and Central and Eastern Europe. They attribute the attacks to the a ...
Security Boulevard
8/27/19 – Dtex, Insider Threat, Privacy News: Microsoft APT28 Shut Downs Highlight Insider Threat Risks, Tech Heavyweights Seek to Sidestep California Privacy Law
Dtex Systems | | APT28, California Consumer Privacy Act, Cecilia Kang, Christy Wyatt, Cybersecurity, Dtex, facebook, Fancy Bear, GDPR, google, Harris Poll, IBM, insider threat, Microsoft, Privacy, Russia, Strontium, The New York Times
Last week, Microsoft reported that it detected six internet domains that were set up by cyberattack groups associated with the Russian government. According to Microsoft: Last Week, Microsoft’s Digital Crimes Unit (DCU) ...
Security Boulevard’s 5 Most Read Stories for the Week, August 20-24
Saleem Padani | | Anti-Malware, Apache ActiveMQ, APT28, Cobalt Dickens, cyberespionage, data protection, Endpoint security, Fancy Bear, GDPR, government-sponsored attack, IoT malware, Iranian hackers, Malware, Mirai, phishing domain, Privacy, Security Awareness, video, web app security, website spoofing
A new week, a new crop of security stories. Last week, malware complacency, Russian cyberspies, GDPR compliance and Mirai IoT malware made the headlines. In addition, we analyzed top security threats for ...
Security Boulevard
Microsoft Seizes Domains Set Up by Russian Cyberspies
Lucian Constantin | | APT28, cyberespionage, Fancy Bear, government-sponsored attack, phishing domain
Microsoft has seized six domains that were registered by Russian cyberespionage group Fancy Bear and mimicked the websites of U.S. political organizations and think tanks. “One appears to mimic the domain of ...
Security Boulevard
Cyber Security Roundup for March 2018
Dave Whitelegg | | APT28, aws, Cobalt, cyber security roundup, dark web, Data breach, data protection, ddos, patching, Payment Card Fraud, talktalk, Web Application Security
In the wake of the global political fallout over the Salisbury nerve agent attack, there are reports of a growing threat of Russian state or Russian state-affiliated hacking groups conducting cyber attack ...
Fancy Bear Adopts New DDE Attack Against Microsoft Office
Lucian Constantin | | APT28, Defender ATP, dynamic data exchange, Fancy Bear, Incident Response, malicious document, Malware, Windows Defender Advanced Threat Protection
Russian cyberespionage group Fancy Bear is using a recently publicized technique that abuses a legitimate Microsoft Office feature to create documents that can install malware. For the past several years the most ...
Fancy Bear Cyberspies Hide Phishing Pages Behind Blogspot Links
Lucian Constantin | | APT28, banking trojan, black hat SEO, blogspot, cyberespionage, DNC hack, fake AV, Fancy Bear, Hacking, Pawn Storm, Phishing, scareware, search engine optimization, Sofacy, zeus
Security researchers have identified a new phishing campaign launched by Russian cyberespionage group Fancy Bear that uses rogue blogspot.com URLs to bypass spam filters. These latest attacks were aimed at Bellingcat, a ...