The Hacker News

DECEMBER 7, 2023

The threat actor known as COLDRIVER has continued to engage in credential theft activities against entities that are of strategic interests to Russia while simultaneously improving its detection evasion capabilities. It's also called Blue Callisto, BlueCharlie (or TAG-53),

77

77

The Hacker News

MARCH 8, 2022

A broad range of threat actors, including Fancy Bear, Ghostwriter, and Mustang Panda, have launched phishing campaigns against Ukraine, Poland, and other European entities amid Russia's invasion of Ukraine.

Phishing 101

Phishing 101

The Hacker News

FEBRUARY 20, 2023

Russia's cyber attacks against Ukraine surged by 250% in 2022 when compared to two years ago, Google's Threat Analysis Group (TAG) and Mandiant disclosed in a new joint report.

Cyber Attacks 90

Cyber Attacks Government 90

The Hacker News

APRIL 19, 2023

Elite hackers associated with Russia's military intelligence service have been linked to large-volume phishing campaigns aimed at hundreds of users in Ukraine to extract intelligence and influence public discourse related to the war.

Phishing 83

Phishing 83

Heimadal Security

FEBRUARY 21, 2023

According to a new report released by Google’s Threat Analysis Group (TAG) and Mandiant, Russia’s cyber attacks against Ukraine increased by 250% in 2022.

Cyber Attacks 97

Cyber Attacks Media Government Cybersecurity 97

The Hacker News

DECEMBER 7, 2022

A state-sponsored hacking group with links to Russia has been linked to attack infrastructure that spoofs the Microsoft login page of Global Ordnance, a legitimate U.S.-based based military weapons and hardware supplier.

Hacking 90

Hacking Cybersecurity 90

Bleeping Computer

MARCH 30, 2022

The Google Threat Analysis Group (TAG) says more and more threat actors are now using Russia's war in Ukraine to target Eastern European and NATO countries, including Ukraine, in phishing and malware attacks. [.].

Phishing 90

Phishing Malware 90

Security Affairs

MARCH 31, 2022

The Google TAG uses uncovered phishing attacks targeting Eastern European and NATO countries, including Ukraine. The researchers uncovered a phishing campaign conducted by a Russia-linked threat actor tracked as COLDRIVER (aka Calisto ) against a NATO Centre of Excellence and Eastern European militaries. ” concludes Google. .”

Phishing 86

Phishing Accountability Government Hacking 86

Security Affairs

APRIL 3, 2022

Anonymous continues its operations against Russia, the group announced the hack of the Russian investment firm Marathon Group. Mar 31 – Google TAG details cyber activity with regard to the invasion of Ukraine. The Google TAG uses uncovered phishing attacks targeting Eastern European and NATO countries, including Ukraine.

DDOS 98

DDOS Hacking Mobile Internet 98

Heimadal Security

MARCH 31, 2022

According to the Google Threat Analysis Group (TAG), a great number of threat actors are currently exploiting the event of the Russian invasion in Ukraine to launch phishing and malware cyberattacks against Eastern European and NATO countries. The cyberattacks also target Ukraine.

Phishing 110

Phishing Government Malware Cybersecurity 110

Security Affairs

DECEMBER 28, 2023

Numerous leaks disseminated in the underground cyber world were tagged with ‘Free Leaksmas,’ indicating that these significant leaks were shared freely among various cybercriminals as a form of mutual gratitude. Instead, they marked the holiday season in their unique way.

Identity Theft 143

Identity Theft Data breaches Government Hacking 143

CyberSecurity Insiders

OCTOBER 18, 2021

Ajax Bash, the Security Engineer of Google Threat Analysis Group (TAG) endorsed the statement and attributed a large global campaign to a group of threat actors belonging to Kremlin based Fancy Bear (APT28).

Cyber Attacks 131

Cyber Attacks Cyber threats Accountability Engineering 131

The Hacker News

JUNE 30, 2022

Google's Threat Analysis Group (TAG) on Thursday disclosed it had acted to block as many as 36 malicious domains operated by hack-for-hire groups from India, Russia, and the U.A.E.

Hacking 91

Hacking 91

Security Affairs

MARCH 9, 2022

The campaign took place in February and Google Threat Analysis Group (TAG) team was not able to link it to the ongoing invasion of Ukraine. Google Threat Analysis Group (TAG) director Shane Huntley confirmed that the IT giant was able to detect and block all phishing messages. government. Pierluigi Paganini.

Government 96

Government Phishing DDOS Hacking 96

Security Affairs

AUGUST 7, 2020

Google published its second Threat Analysis Group (TAG) report which reveals the company has taken down ten coordinated operations in Q2 2020. Google has published its second Threat Analysis Group (TAG) report , a bulletin that includes coordinated influence operation campaigns tracked in Q2 of 2020. response to COVID-19.

Accountability 102

Accountability Advertising Media Government 102

Security Affairs

MARCH 13, 2022

This post provides a timeline of the events related to the Russia invasion of Ukraine from the cyber security perspective. Russian Internet watchdog Roskomnadzor is going to ban Instagram in Russia to prevent the spreading of info related to the Ukraine invasion. March 8 – Google TAG: Russia, Belarus-linked APTs targeted Ukraine.

Hacking 95

Hacking DDOS Phishing Malware 95

Heimadal Security

AUGUST 2, 2021

In July 2020, a joint advisory was published that revealed a Russian espionage campaign named APT29 or Cozy Bear, seen also as an extension of SVR (Russia’s Foreign Intelligence Services). The post Russia’s SVR WellMess Malware Is Seemingly Still in the Game appeared first on Heimdal Security Blog.

Malware 105

Malware Cybersecurity 105

Security Affairs

FEBRUARY 25, 2024

Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S.

Spyware 104

Spyware Cyber Insurance Hacking Advertising 104

Security Affairs

MAY 28, 2022

Russia-linked threat actors are behind a new website that published leaked emails from leading proponents of Britain’s exit from the EU, the Reuters reported. According to Reuters, at least victims of the leak confirmed the authenticity of the messages and revealed they were targeted by Russia-linked hackers. Pierluigi Paganini.

Authentication 129

Authentication Hacking Cybersecurity Accountability 129

Security Affairs

MAY 23, 2022

Russia-linked APT group Turla was observed targeting the Austrian Economic Chamber, a NATO eLearning platform, and the Baltic Defense College. The researchers investigated the TURLA’s infrastructures starting from the domains in the TAG report: wkoinfo.webredirect[.]org Researchers from SEKOIA.IO org jadlactnato.webredirect[.]org.

Government 122

Government Hacking Cybersecurity Information Security 122

Security Affairs

JANUARY 21, 2024

Admin of the BreachForums hacking forum sentenced to 20 years supervised release Russia-linked Midnight Blizzard APT hacked Microsoft corporate emails VF Corp December data breach impacts 35 million customers China-linked APT UNC3886 exploits VMware zero-day since 2021 Ransomware attacks break records in 2023: the number of victims rose by 128% U.S.

Artificial Intelligence 106

Artificial Intelligence VPN Hacking Firewall 106

Security Affairs

OCTOBER 25, 2023

Russia-linked threat actor Winter Vivern has been observed exploiting a zero-day flaw in Roundcube webmail software. The analysis of the email HTML source code revealed the presence of a SVG tag at the end, which contains a base64-encoded payload. The messages were sent from team.managment@outlook[.]com

Software 119

Software Government Phishing Internet 119

CyberSecurity Insiders

AUGUST 18, 2022

As Estonia is a NATO affiliated nation and is against the war of Russia with Ukraine, Putin backed Killnet hacking group is suspected to be behind the incident. NOTE- The war between Ukraine and Russia is soon going to end as the latter has faced extreme criticism from its populace, from the entire world and now its own military personnel.

Cyber Attacks 106

Cyber Attacks Digital transformation DDOS Hacking 106

Security Affairs

MARCH 20, 2022

This post provides a timeline of the events related to the Russia invasion of Ukraine from the cyber security perspective. Google’s TAG team revealed that China-linked APT groups are targeting Ukraine ’s government for intelligence purposes. March 18 – Russia-linked Cyclops Blink botnet targeting ASUS routers.

Government 93

Government Antivirus Hacking Software 93

Krebs on Security

NOVEMBER 28, 2022

area — as the company had represented — but was instead operated from Novosibirsk, Russia. the company’s employees are located in Novosibirsk, Russia. Pushwoosh was incorporated in Novosibirsk, Russia in 2016. Pushwoosh employees posing at a company laser tag event. THE PINCER TROJAN CONNECTION.

Mobile 228

Mobile Malware Technology Government 228

Security Affairs

JULY 14, 2021

Google security experts revealed that Russia-linked APT group targeted LinkedIn users with Safari zero-day. Security researchers from Google Threat Analysis Group (TAG) and Google Project Zero revealed that four zero-day vulnerabilities have been exploited in the wild earlier this year. ” reads the post published by Google.

Surveillance 144

Surveillance Government Internet Internet 144

SecureWorld News

OCTOBER 19, 2021

Microsoft, for instance, just released the 2021 Digital Defense Report pointing a finger at Russia as making up 58% of all nation-state cyberattack incidents observed by the corporation. With numbers like that and a focus on ransomware, it is easy to see why Russia is owning most of the headlines.

Phishing 69

Phishing Authentication Social Engineering Government 69

Security Affairs

JULY 15, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Spyware 97

Spyware Hacking Data breaches Mobile 97

Security Affairs

OCTOBER 17, 2020

Shane Huntley, Director at Google’s Threat Analysis Group (TAG), revealed that her team has shared its findings with the campaigns and the Federal Bureau of Investigation. ” reads the report published by Google TAG. SecurityAffairs – hacking, Google TAG). Pierluigi Paganini.

DDOS 92

DDOS Phishing Advertising Accountability 92

CyberSecurity Insiders

DECEMBER 9, 2021

As per the Threat Analysis Group (TAG) of Google, the criminals are using such compromised devices to mine cryptocurrency, steal credentials from victims, and use them as proxies to hide their attacks.

Cryptocurrency 105

Cryptocurrency Government Internet Internet 105

CyberSecurity Insiders

MARCH 15, 2022

update along with some new set of emojis and technically blocks illegal tracking of Air Tag users. Apple Inc has also issued a public statement that it will suspend sales and services of its iPhones in Russia, to support sanctions imposed by the White House. What’s disappointing is that the iOS 15.4

Mobile 109

Mobile Authentication Cybersecurity 109

Security Affairs

JUNE 6, 2022

USA) has identified an increase in activity within hacktivist groups, they’re leveraging current geopolitical tensions between the Ukraine and Russia to perform cyber-attacks. The post Exclusive: Pro-Russia group ‘Cyber Spetsnaz’ is attacking government agencies appeared first on Security Affairs. Resecurity, Inc.

Government 141

Government DDOS Cyber Attacks Hacking 141

Security Affairs

JANUARY 9, 2023

Russia-linked Cold River APT targeted three nuclear research laboratories in the United States in 2022 summer, Reuters reported. Reuters reported that the Russia-linked APT group Cold River (aka Calisto) targeted three nuclear research laboratories in the United States between August and September 2022. Pierluigi Paganini.

Phishing 88

Phishing Hacking Cybersecurity Passwords 88

Security Affairs

OCTOBER 14, 2021

The data were provided by Google’s Threat Analysis Group (TAG), which tracks government-backed hacking campaign, which warns of a significant increase in the number of the alert compared to the previous year. ” wrote Ajax Bash, a Google security engineer from the TAG.

Phishing 93

Phishing Hacking Government VPN 93

SecureWorld News

FEBRUARY 25, 2022

Anonymous, the decentralized international activist and hacktivist collective, announced it will be the latest organization to join the efforts in fighting back against Russia. In a 2015 cyberattack, widely attributed to Russia state hackers, 225,000 Ukrainians lost electricity.

Government 71

Government Hacking Cybersecurity Technology 71

CyberSecurity Insiders

APRIL 26, 2022

Tory MP Mark Francois tagged the data breach as extremely concerning for the government and entire nation, as data leaks could put the lives of the on-duty spies working for the nation and their families in extreme danger. The post Russia could have hacked the UK Spy agency says MoD appeared first on Cybersecurity Insiders.

Hacking 87

Hacking Data breaches Government Cybersecurity 87

Security Affairs

MAY 24, 2021

Unlike other variants of the Vega ransomware, the Zeppelin ransomware doesn’t infect users in Russia or other ex-USSR countries like Ukraine, Belorussia, and Kazakhstan. The malware was available for sale at a price tag of $2,300 per core build, but they offered individual conditions to their subscribers.

Ransomware 128

Ransomware Encryption Malware Healthcare 128