January 18, 2024 at 09:05AM Russian cyberspies, associated with the FSB, have developed a custom backdoor called SPICA, targeting academia, military, governmental orgs, NGOs, think tanks, and politicians in the US, the UK, and other NATO countries. They have recently escalated their attacks against Ukraine’s military and other Eastern European nations. The group employs sophisticated … Read more
December 7, 2023 at 08:40PM The Five Eyes alliance issued a warning about the Russian hacking group Star Blizzard’s phishing attacks on defense and energy sectors. Directed by Russia’s FSB, the group has expanded targets and tactics, with U.S. and UK officials and institutions being primary victims. Two members have been indicted for hacking between … Read more
December 7, 2023 at 05:18PM A Kremlin-linked APT group, “Star Blizzard,” known for cyberespionage and targeting NATO-associated entities since 2017, recently updated its evasion tactics. Microsoft exposed these new techniques, which include the use of password-protected PDFs, cloud file-sharing, advanced domain creation, and exploitation of email marketing platforms for phishing. Despite operations against UK officials, … Read more
December 7, 2023 at 04:48PM The US cybersecurity agency, CISA, issued a warning about the Russian ‘Star Blizzard’ APT, which is conducting a spear-phishing operation against sectors including academia, defense, government, NGOs, and think-tanks. Takeaways from Meeting Notes: 1. The US cybersecurity agency has issued an alert regarding a Russian Advanced Persistent Threat (APT) known … Read more
December 7, 2023 at 10:28AM Star Blizzard, believed to be linked to Russia’s FSB, continues targeted spear-phishing attacks for intelligence gathering. They impersonate trusted contacts using researched information to deceive individuals and organizations in the UK and beyond. Numerous cyber security agencies warn of their expanded targeting since 2019, including the defense industry and energy … Read more
December 7, 2023 at 10:06AM The COLDRIVER threat actor, tracked as Star Blizzard by Microsoft and linked to Russia’s FSB, has been targeting entities aligned with Russian interests using advanced credential theft and evasion techniques. They use impersonating domains, email campaigns, and server-side scripts for phishing while avoiding detection. Recently, the U.K. sanctioned two of … Read more