June 28, 2024 at 10:48AM TeamViewer, a widely used RMM software, has reported a breach in their corporate network believed to be orchestrated by the Russian state-sponsored hacking group Midnight Blizzard. The company believes the breach occurred using an employee’s credentials. TeamViewer assures customers that their production environment and customer data were not accessed, recommending … Read more
June 20, 2024 at 05:10PM Midnight Blizzard, a Russia-backed advanced persistent threat, continues to pose an active threat to French diplomatic entities. Recently targeted by the group are institutions including the French Ministry of Culture and the National Agency for Territorial Cohesion. Tactics include phishing and forged documents to access networks and exfiltrate data, per … Read more
June 20, 2024 at 10:58AM State-sponsored cyber attacks targeting French diplomatic entities have been linked to Russia by the country’s information security agency. The attacks, attributed to a cluster named Midnight Blizzard, use phishing emails and compromised accounts to initiate malicious actions. The threat actor, known as Nobelium, has also targeted European embassies and leveraged … Read more
June 20, 2024 at 08:37AM The CERT-FR report on Nobelium’s cyber activities revealed the group’s espionage focus and targeting of French diplomatic entities, including the Ministry of Foreign Affairs. The report warns of Nobelium’s threat to national security and diplomatic interests, amid concerns about Russian interference in French affairs, particularly during election periods. The group’s … Read more
March 8, 2024 at 02:33PM Russian government-backed hackers breached Microsoft corporate network, stole source code, and are still attempting unauthorized access using exfiltrated email information. No evidence of customer-facing system compromise. Group may be targeting shared secrets. Increased attack volume noted. Hacking group was previously caught spying on executives and involved in SolarWinds supply chain … Read more
January 25, 2024 at 02:29PM Russian threat actor “Midnight Blizzard,” also known as Nobelium, breached both Hewlett-Packard Enterprise’s (HPE) and Microsoft’s email environments, exfiltrating data from senior leadership and other segments. Both companies were unaware of the breaches until months later, highlighting the threat’s insidious nature. The attack serves as a sobering reminder of the … Read more
January 19, 2024 at 07:23PM Microsoft disclosed a breach in corporate email accounts, with data stolen by the Russian state-sponsored hacking group Midnight Blizzard. The attack was detected on January 12th, and it was found that Nobelium accessed the accounts through a password spray attack in November 2023. The investigation is ongoing, and Microsoft is … Read more
January 19, 2024 at 07:08PM Microsoft confirmed a breach of corporate email accounts by Russian state-sponsored group Midnight Blizzard. The attack, detected on January 12th, 2023, was initiated via a password spray attack in November 2023. Access was gained to leadership team and legal department emails for over a month, enabling theft of emails and … Read more