Russian state threat groups have compromised Signal accounts used by Ukrainian military and government personnel to eavesdrop on real-time communications, Google Threat Intelligence Group said in a report released Wednesday. “This is a persistent, ongoing campaign being carried out by multiple different Russia-aligned threat actors,” Dan Black, principal analyst at Google Threat Intelligence Group, said…
Category: Russia
Cybersecurity, Exploits, Global Security News, Microsoft, phishing, Research, Russia, Threat Intelligence, Threats, Volexity
Threat researchers spot ‘device code’ phishing attacks targeting Microsoft accounts
Microsoft threat researchers discovered a series of what they are calling “device code” phishing attacks that allowed a suspected Russia-aligned threat group to gain access to and steal data from critical infrastructure organizations, the company said in research released Thursday. The group, which Microsoft tracks as Storm-2372, has targeted governments, IT services and organizations operating…
Asia Pacific, china espionage, Cloud Security, Cyberlaw, Cybersecurity, Data Security, Featured, Global Security News, Google, Incident Response, malware, Mobile Security, nation-state attacks, national security risk, Network Security, News, Russia, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight, Threat Intelligence, Threats & Breaches
Lines Between Nation-State and Cybercrime Groups Disappearing: Google
Threat researchers with Google are saying that the lines between nation-state actors and cybercrime groups are blurring, noting that gangs backed by China, Russia, and others are using financially motivated hackers and their tools while attacks by cybercriminals should be seen as national security threats. The post Lines Between Nation-State and Cybercrime Groups Disappearing: Google…
CVE, Cybersecurity, Exploits, Global Security News, Microsoft, Microsoft Threat Intelligence Center, Research, Russia, Seashell Blizzard, Threats, Uncategorized, vulnerabilities
Russian state threat group shifts focus to US, UK targets
A subgroup of Seashell Blizzard has shifted its focus to targets in the U.S., Canada, Australia and the U.K. within the past year, expanding the scope of its malicious activity, Microsoft’s threat intelligence team said in a report released Wednesday. The initial-access operation, which Microsoft tracks as the “BadPilot campaign,” has allowed the Russian state…
APT44, Asia Pacific, china, Cybercrime, Global Security News, Google, Iran, North Korea, Russia, Sandworm, Trellix, Ukraine
U.S. adversaries increasingly turning to cybercriminals and their malware for help
Governments of the United States’ chief adversaries in cyberspace, especially Russia, have increasingly been relying on cybercriminals and their tools to advance their goals, according to a Google report published Tuesday. There’s long been overlap between government and criminal cyber operators, but governments are now enjoying the benefits of collaboration and borrowing more — both…
Cybersecurity, data breach, Global IT News, Global Security News, Hewlett-Packard Enterprise, Microsoft, Russia, Security
HPE begins notifying data breach victims after Russian government hack
Hackers with Russian foreign intelligence were blamed for the breach, which also targeted Microsoft. © 2024 TechCrunch. All rights reserved. For personal use only.
disinformation, doj, Election Security, Emerging Tech, Foreign Agents Registration Act (FARA), Global Security News, Government, Policy, Russia, Trump Administration
DOJ disbands foreign influence task force, limits scope of FARA prosecutions
One of the first acts taken by Pam Bondi after being sworn in as attorney general was to disband an FBI task force that countered the influence of adversarial foreign governments on American politics. In a memo issued Wednesday, Bondi wrote that the Department of Justice would be shifting resources in its National Security Division,…
Department of Justice (DOJ), FSB, Geopolitics, Global Security News, Government, Microsoft, phishing, Russia, Star Blizzard, Threats, WhatsApp
Microsoft catches Russian state-sponsored hackers shifting tactics to WhatsApp
The cat-and-mouse game between state-sponsored Russian hackers and one of the world’s biggest technology companies has continued into 2025. Microsoft’s threat intelligence team published research Thursday examining how a state-sponsored Russian threat actor group, known as Star Blizzard, has altered its longstanding attack strategies to target WhatsApp accounts. This attack vector is a significant change…
Citizen Lab, Cybersecurity, Global IT News, Global Security News, Greece, infosec, poland, Russia, Security, Spyware, UN, United Nations, united states
Governments call for spyware regulations in UN Security Council meeting
Several governments participated in a meeting on the proliferation of commercial spyware at the United Nations Security Council. © 2024 TechCrunch. All rights reserved. For personal use only.
APT28, Europe, Fancy Bear, Global Security News, GRU, Kazakhstan, Russia, Sekoia, Threats
Fancy Bear spotted using real Kazak government documents in spearpishing campaign
A hacking group linked to Russian intelligence has been observed leveraging seemingly legitimate documents from the Kazakhstan government as phishing lures to infect and spy on government officials in Central Asia, according to researchers at Sekoia. The files, laced with malware, include draft versions of diplomatic statements, correspondence letters, internal administrative notes and other documents…
crypto mixer, Cybercrime, Department of Justice (DOJ), Federal Bureau of Investigation (FBI), Global Security News, money laundering, Russia
Russian nationals charged with operating crypto mixers that masked cybercrime funds
Three Russian nationals were indicted this week for their roles in managing a pair of cryptocurrency mixing services, operations that were funded in part by money gained through ransomware attacks. The indictment from a federal grand jury in the Northern District of Georgia alleges that Roman Vitalyevich Ostapenko, 55, Alexander Evgenievich Oleynik, 44, and Anton…
disinformation, election hacking, Geopolitics, Global Security News, Government, Iran, Russia, sanctions, Technology, Threats
US sanctions Russian, Iranian groups for election interference
The U.S. State Department has sanctioned two foreign organizations and one individual who it alleges worked on behalf of Russian and Iranian intelligence agencies to interfere in the 2024 U.S. general election. “These actors sought to stoke sociopolitical tensions and undermine our election institutions during the 2024 U.S. general election,” said State Department Press Secretary…
Budapest Convention, Chris Painter, Cybercrime, David Kaye, Electronic Frontier Foundation, Geopolitics, Global Forum on Cyber Expertise, Global Security News, human rights, North America, Policy, privacy, Russia, State Department, treaties, United Nations
After UN adoption, controversial cybercrime treaty’s next steps could prove vital
A divisive United Nations cybercrime treaty — one that critics say is a huge danger to human rights and that the United States cautiously agreed to advance — is now in the hands of member nations. The U.N. General Assembly adopted the treaty without a vote last week, leaving ratification to individual states. If the…
china, Congress, disinformation, Global Security News, Government, NDAA, Russia, State Department
State Department’s disinformation office to close after funding nixed in NDAA
The State Department’s center for fighting global disinformation received a lump of coal in its Christmas stocking this week as congressional lawmakers excluded new funding and authorization for the office beyond this year. The Global Engagement Center, which tracks foreign disinformation, will lose its authority on Dec. 24. Despite a concerted push by State officials…
Asia Pacific, china, future union, Global Security News, humba ventures, Russia, Venture
Over 20 venture firms pledge to not take money from China, Russia
Founders now have a way to ensure that their investors haven’t taken money from countries like China, Russia, Iran or Cuba. Over 20 venture firms have signed the Clean Capital Certification, attesting that they have not and will not take money from foreign adversaries. Some of the firms that have signed include Marlinspike Partners, Humba…
Central Intelligence Agency, Commerce Department, Geopolitics, Global Security News, Google, Kaspersky, Mastercard, Money, North America, Recorded Future, Russia, Ukraine
Russia bans cybersecurity company Recorded Future
Russia banned the cybersecurity company Recorded Future on Wednesday, labeling it an “undesirable” organization — much to its CEO’s delight. The company stands accused of collaborating with the Central Intelligence Agency, Ukraine and other countries. “They provide information and technical support for the propaganda campaign launched by the West against Russia,” Russia’s Office of Prosecutor…
china, Cybercrime, Department of Justice, Department of Justice (DOJ), Department of State, Geopolitics, Global Security News, Justice Department, Mandiant, North America, North Korea, North Korean IT workers, Russia, State Department, U.S. courts, U.S. Department of Justice, U.S. Department of State
Court indicts 14 North Korean IT workers tied to $88 million in illicit gains
A federal court has indicted 14 more North Korean IT workers as part of an ongoing U.S. government campaign to crack down on Pyongyang’s use of tech professionals to swindle American companies and nonprofits. The Justice Department said the 14 indicted workers generated at least $88 million throughout a conspiracy that stretched over approximately six…
Global Security News, Guest blog, malware, North America, Ransomware, Russia
Ransomware-hit vodka maker Stoli files for bankruptcy in the United States
Stoli Group USA, the US subsidiary of vodka maker Stoli, has filed for bankruptcy – and a ransomware attack is at least partly to blame. The American branch of Stoli, which imports and distributes Stoli brands in the United States, as well as the Kentucky Owl bourbon brand it purchased in 2017, was hit by…