Category Archives: APT29

CISA emergency directive tells agencies to fix credentials after Microsoft breach

Posted on by

CyberScoop first reported on the existence of the directive, which calls the pilfered emails “a grave and unacceptable risk to agencies.”

The post CISA emergency directive tells agencies to fix credentials after Microsoft breach appeared first on CyberScoop.

Continue reading CISA emergency directive tells agencies to fix credentials after Microsoft breach

Federal government affected by Russian breach of Microsoft

Posted on by

U.S. cybersecurity officials issued an emergency directive this week to address a breach by Russian operatives of Microsoft first disclosed in January.

The post Federal government affected by Russian breach of Microsoft appeared first on CyberScoop.

Continue reading Federal government affected by Russian breach of Microsoft

Russian APT29 Hackers Caught Targeting German Political Parties 

Posted on by

Russia’s APT29 hacking group is expanding targets to political parties in Germany using a new backdoor variant tracked as Wineloader.
The post Russian APT29 Hackers Caught Targeting German Political Parties  appeared first on SecurityWeek.
Continue reading Russian APT29 Hackers Caught Targeting German Political Parties 

Russian Midnight Blizzard Hackers Breached Microsoft Source Code

Posted on by

By Deeba Ahmed
Midnight Blizzard (aka Cozy Bear and APT29) originally breached Microsoft on January 12, 2024.
This is a post from HackRead.com Read the original post: Russian Midnight Blizzard Hackers Breached Microsoft Source Code
Continue reading Russian Midnight Blizzard Hackers Breached Microsoft Source Code

Russian Cyberspies Targeting Cloud Infrastructure via Dormant Accounts

Posted on by

US government and allies expose TTPs used by notorious Russian hacking teams and warn of the targeting of dormant cloud accounts.
The post Russian Cyberspies Targeting Cloud Infrastructure via Dormant Accounts appeared first on SecurityWeek.
Continue reading Russian Cyberspies Targeting Cloud Infrastructure via Dormant Accounts

HPE Says Russian Government Hackers Had Access to Emails for 6 Months

Posted on by

HPE told the SEC that Russian state-sponsored threat group Midnight Blizzard had access to an email system for several months.
The post HPE Says Russian Government Hackers Had Access to Emails for 6 Months appeared first on SecurityWeek.
Continue reading HPE Says Russian Government Hackers Had Access to Emails for 6 Months

Microsoft Says Russian Gov Hackers Stole Email Data from Senior Execs

Posted on by

A Russian government-backed hacking team broke into Microsoft’s corporate network and stole emails and attachments from senior executives.
The post Microsoft Says Russian Gov Hackers Stole Email Data from Senior Execs appeared first on SecurityWeek.
Continue reading Microsoft Says Russian Gov Hackers Stole Email Data from Senior Execs

Russian APT29 Hacked US Biomedical Giant in TeamCity-Linked Breach

Posted on by

By Waqas
Polish authorities and FortiGuard Labs have issued a warning to customers about a new wave of cyberattacks associated with TeamCity.
This is a post from HackRead.com Read the original post: Russian APT29 Hacked US Biomedical Giant in TeamCity-… Continue reading Russian APT29 Hacked US Biomedical Giant in TeamCity-Linked Breach

Russian Cyberspies Exploiting TeamCity Vulnerability at Scale: Government Agencies

Posted on by

US, UK, and Poland warn of Russia-linked cyberespionage group’s broad exploitation of recent TeamCity vulnerability.
The post Russian Cyberspies Exploiting TeamCity Vulnerability at Scale: Government Agencies appeared first on SecurityWeek.
Continue reading Russian Cyberspies Exploiting TeamCity Vulnerability at Scale: Government Agencies