Fancy Bear – Page 3 – WindowsTechs.com

Russia, China, Iran Meddle in 2020 Election (Unsurprisingly)

Posted on September 11, 2020 by Richi Jennings

It comes as no surprise to hear that Russia is up to its old tricks. China and Iran are also in on the game.
The post Russia, China, Iran Meddle in 2020 Election (Unsurprisingly) appeared first on Security Boulevard.
Continue reading Russia, China, Iran Meddle in 2020 Election (Unsurprisingly)→

Drovorub: Russia Pushing Invisible Malware, say NSA and FBI

Posted on August 14, 2020 by Richi Jennings

Fancy Bear is at it again. This time, it’s said to be infecting Linux machines with Drovorub—rootkit malware that’s very hard to detect.
The post Drovorub: Russia Pushing Invisible Malware, say NSA and FBI appeared first on Security Boulevard.
Continue reading Drovorub: Russia Pushing Invisible Malware, say NSA and FBI→

FBI and NSA expose Russian State hacking tool for Linux systems

Posted on August 14, 2020 by Sudais Asif

By Sudais Asif
Dubbed Drovorub by the agencies; the malware hacking tool is capable of spying on Linux systems.
This is a post from HackRead.com Read the original post: FBI and NSA expose Russian State hacking tool for Linux systems
Continue reading FBI and NSA expose Russian State hacking tool for Linux systems→

Russia’s GRU Military Unit Behind Previously Unknown Linux Malware, NSA Says

Posted on August 14, 2020 by Silviu STAHIE

The National Security Agency (NSA) and the Federal Bureau of Investigation (FBI) have revealed the existence of a new piece of malware named Drovorub, most likely developed by a military unit of the Russian General Staff Main Intelligence Directorate (… Continue reading Russia’s GRU Military Unit Behind Previously Unknown Linux Malware, NSA Says→

NSA, FBI publicize hacking tool linked to Russian military intelligence

Posted on August 13, 2020 by Shannon Vavra

The National Security Agency and the FBI are jointly exposing malware that they say Russian military hackers use in cyber-espionage operations. Hackers working for Russia’s General Staff Main Intelligence Directorate’s 85th Main Special Service Center, military unit 26165, use the malware, which the Russians themselves call “Drovorub,” to target Linux systems, the NSA and FBI said Thursday in a detailed report. The hackers, also known as APT28 or Fancy Bear, allegedly hacked the Democratic National Committee in 2016 and frequently target defense, government, and aerospace entities. The Russian military agency is also known as the GRU. While the alert does not include specific details about Drovorub victims, U.S. officials did say they published the alert Thursday to raise awareness about state-sponsored Russian hacking and possible defense sector vulnerabilities. The disclosure comes just months before American voters will conduct a presidential election. “Information in this Cybersecurity Advisory is being disclosed publicly to assist National Security System […]

The post NSA, FBI publicize hacking tool linked to Russian military intelligence appeared first on CyberScoop.

Continue reading NSA, FBI publicize hacking tool linked to Russian military intelligence→

Black Hat 2020: Influence Campaigns Are a Cybersecurity Problem

Posted on August 7, 2020 by Tom Spring

An inside look at how nation-states use social media to influence, confuse and divide — and why cybersecurity researchers should be involved. Continue reading Black Hat 2020: Influence Campaigns Are a Cybersecurity Problem→

Russian hackers using stolen corporate email accounts to mask their phishing attempts

Posted on March 19, 2020 by Shannon Vavra

Hackers working for Russian military intelligence have long relied on zero-days and malware to target their victims, but in the last year they’ve kept it simple — using previously hacked email accounts to send a wide array of phishing attempts, according to new research from security firm Trend Micro. Since at least May of last year, the group known as Fancy Bear, APT28, or Pawn Storm, has used hacked email accounts belonging to high-profile personnel working at defense firms in the Middle East to carry out the operation, according to Feike Hacquebord, a senior threat researcher at Trend Micro. “The actor connects to a dedicated server using the OpenVPN option of a commercial VPN provider and then uses compromised email credentials to send out credential spam via a commercial email service provider,” Hacquebord writes in the research. The group, which the U.S. Department of Justice linked with Russia’s Main Intelligence Directorate […]

The post Russian hackers using stolen corporate email accounts to mask their phishing attempts appeared first on CyberScoop.

Continue reading Russian hackers using stolen corporate email accounts to mask their phishing attempts→

Austria Repels Foreign State-Sponsored Attempt to Hack Foreign Ministry

Posted on January 7, 2020 by Silviu STAHIE

Austria’s Foreign Ministry fought off a cyberattack over the weekend that it says was likely directed by a foreign state. The ministry said the attack started on Jan. 4 and might continue for a few more days, it but revealed few further details. … Continue reading Austria Repels Foreign State-Sponsored Attempt to Hack Foreign Ministry→

Reddit Says Influence Campaign is Behind Leaked U.S.-U.K. Trade Documents

Posted on December 9, 2019 by Elizabeth Montalbano

The platform has linked documents posted on its site to a vote-manipulation campaign already observed on Facebook earlier this year. Continue reading Reddit Says Influence Campaign is Behind Leaked U.S.-U.K. Trade Documents→

News Wrap: APTs, Office 365 Voicemail Phish and Bed Bath & Beyond Breach

Posted on November 1, 2019 by Lindsey O'Donnell

Threatpost editors discuss this week’s biggest news – from a data breach of Bed Bath & Beyond, a tricky phishing attack and widespread APT activity. Continue reading News Wrap: APTs, Office 365 Voicemail Phish and Bed Bath & Beyond Breach→