Tag: APT28
-
Russian group exploits Windows print spooler bug via ‘GooseEgg’ malware
Microsoft says a previously undocumented malware it calls “GooseEgg” is being used by Russian threat group APT28 to exploit a known Windows …
-
Russian hackers’ custom tool exploits old Windows Print Spooler flaw (CVE-2022-38028)
For nearly four years and perhaps even longer, Forest Blizzard (aka Fancy Bear, aka APT28) has been using a custom tool that exploits a …
-
Russian APT28 Group in New “GooseEgg” Hacking Campaign
A notorious Russian APT group has been stealing credentials for years by exploiting a Windows Print Spooler bug and using a novel …
-
Ubiquiti router users urged to secure devices targeted by Russian hackers
Cybersecurity and law enforcement agencies are warning Ubiquiti EdgeRouter users to urgently upgrade security settings on the devices, a …
-
Hackers backed by Russia and China are infecting SOHO routers like yours, FBI warns
The FBI and partners from 10 other countries are urging owners of Ubiquiti EdgeRouters to check their gear for signs they’ve been …
-
U.S. Government Disrupts Russia-Linked Botnet Engaged in Cyber Espionage
The U.S. government on Thursday said it disrupted a botnet comprising hundreds of small office and home office (SOHO) routers in the …
-
U.S. Government Disrupts Russian-Linked Botnet Engaged in Cyber Espionage
The U.S. government on Thursday said it disrupted a botnet comprising hundreds of small office and home office (SOHO) routers in the …
-
Global NTLM relay attacks deployed by APT28
High-profile organizations around the world have been targeted with NTLM v2 hash relay attacks by Russian state-backed threat operation …
-
Russian APT28 Hackers Targeting High-Value Orgs with NTLM Relay Attacks
Russian state-sponsored actors have staged NT LAN Manager (NTLM) v2 hash relay attacks through various methods from April 2022 to November …
-
Ukraine targeted by APT28 with novel malware
Ukraine has been noted by its Computer Emergency Response Team to be subjected to attacks by Russian state-backed threat operation APT28, …
-
Global APT28 cyberespionage campaign leverages Israel-Hamas war lures
Organizations across at least 13 countries, including Ukraine, Australia, Italy, and Saudi Arabia, have been subjected to a new …
-
Extensive APT28 attack campaign with Outlook zero-day detailed
At least 30 organizations across 14 countries, most of which are part of NATO, and a NATO Rapid Deployable Corps have been targeted by …
●●●