August 30, 2024 at 01:42PM APT29, also known as Cozy Bear and Midnight Blizzard, conducted exploit campaigns using n-day mobile exploits previously employed by commercial spyware vendors. Google’s Threat Analysis Group found that these campaigns were initiated through a watering hole attack on Mongolian government websites, aiming to infect devices with iOS and Android vulnerabilities. … Read more
July 10, 2024 at 07:48AM Russian government-backed threat actors have utilized the Meliorator software’s artificial intelligence features to create fake online personas and disseminate disinformation about multiple countries. This tool allows the mass creation of seemingly authentic social media accounts and the perpetuation of false narratives. The US has seized domain names used for this … Read more
May 3, 2024 at 11:49AM NATO, EU, and partners condemn Russian threat group APT28’s cyber espionage campaign targeting European countries, including Germany and Czechia. The attacks compromised email accounts and targeted various government authorities, companies, and critical infrastructure. NATO warns about recent Russian hybrid activities impacting multiple Allied countries. APT28 has been linked to high-profile … Read more
April 15, 2024 at 10:41AM A Russian threat actor is targeting game developers with fraudulent Web3 gaming projects, spreading infostealers on MacOS and Windows. The goal is to defraud and steal cryptocurrency wallets. The campaign uses fake social media accounts and impersonates legitimate projects. The report recommends maintaining vigilance, providing training to recognize social engineering … Read more
November 16, 2023 at 01:18AM Russian threat actors are suspected of launching the largest cyber attack on Danish critical infrastructure in May 2023. The attack targeted 22 energy sector companies and was coordinated and successful. Evidence suggests the involvement of Russia’s GRU military intelligence agency. The attacks exploited a critical command injection flaw in Zyxel … Read more