GRU Archives

AWS Report Links Multi-Year Effort to Compromise Cloud Services to Russia

Michael Vizard | December 15, 2025 | aws, cloud services, cyberattacks, GRU

Amazon Web Services (AWS) today published a report detailing a series of cyberattacks occurring over multiple years attributable to Russia’s Main Intelligence Directorate (GRU) that were aimed primarily at the energy sector ...

Security Boulevard

Response to CISA Advisory (AA25-141A): Russian GRU Targeting Western Logistics Entities and Technology Companies

Ayelen Torello | May 21, 2025 | adversary emulation, APT28, cisa, CISA Advisory, credential harvesting, Fancy Bear, government, GRU, Russia, spear-phishing, technology, transportation

AttackIQ has released a new assessment template in response to the CISA Advisory (AA25-141A) published on May 21, 2025. The CSA highlights a cyber espionage-oriented campaign carried out by cyber actors affiliated ...

AttackIQ

Response to CISA Advisory (AA24-249A): Russian Military Cyber Actors Target US and Global Critical Infrastructure

Francis Guibernau | September 10, 2024 | adversary emulation, cisa, Critical Infrastructure, cyberespionage, Espionage, GRU, Russia, sabotage, Unit 29155, WhisperGate

AttackIQ has released a new assessment template in response to the CISA Advisory (AA24-249A) published on September 5, 2024, that assesses cyber actors affiliated with the Russian General Staff Main Intelligence Directorate ...

AttackIQ

Russian ‘WhisperGate’ Hacks: 5 More Indicted

Eaten by a GRU: Fake ransomware created by Russian GRU Unit 29155 attacked Ukraine and NATO—a month before the full scale invasion ...

Security Boulevard

German Foreign Minister Annalena Baerbock, standing in front of some German flags (“Bundesflagge”)

Germany Warns Russia: Hacking Will Have Consequences

War of the words: Fancy Bear actions are “intolerable and unacceptable,” complains German foreign minister Annalena Baerbock ...

Security Boulevard

FBI Warns: Ubiquiti EdgeRouter is STILL Not Secure

GRU APT28 is back again: Fancy Bear still hacking ubiquitous gear, despite patch availability ...

Security Boulevard

Russia Sends Cybersecurity CEO to Jail for 14 Years

BrianKrebs | July 26, 2023 | Evil Corp., Fancy Bear, Financial Times, Group-IB, GRU, Ilya Sachkov, Kaspersky Lab, Maksim Yakubets, Max Seddon, Ruslan Stoyanov, Sergei Mikhailov, The Coming Storm

The Russian government today handed down a treason conviction and 14-year prison sentence on Iyla Sachkov, the former founder and CEO of one of Russia's largest cybersecurity firms. Sachkov, 37, has been ...

Krebs on Security

‘But His Emails!’ — Ukrainian Hackers Hack Hillary Hacker

Richi Jennings | April 12, 2023 | APT28, DCLeaks, Democratic National Committee, democrats, DNC, DNC hack, Fancy Bear, FBI, GRU, hillary clinton, Russia, SB Blogwatch, Sergey Aleksandrovich Morgachev, Strontium, Ukraine

Beware Fancy Bears Bearing Gifts: Confirms DCLeaks caper was by APT28. Also that APT28 is Russian military unit ...

Security Boulevard

Ukraine Beats Russia in Cyberwarfare — at ‘Unprecedented Scale’

Richi Jennings | April 28, 2022 | ddos, GRU, IT Army, NotPetya, PSYOPS, Russia, Sandworm, SB Blogwatch, Tunguska comet should have hit Moscow, Ukraine, Unit 74455

Russia is attacking Ukraine with cyberattacks and psyops. But the scale is pathetic and Ukraine is fighting back—hard ...

Security Boulevard

Actions Target Russian Govt. Botnet, Hydra Dark Market

The U.S. Federal Bureau of Investigation (FBI) says it has disrupted a giant botnet built and operated by a Russian government intelligence unit known for launching destructive cyberattacks against energy infrastructure in ...

Krebs on Security

GRU

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On