APT29
Response to CISA Advisory (AA24-057A): SVR Cyber Actors Adapt Tactics for Initial Cloud Access
AttackIQ recommends that customers take the following testing actions in alignment to the recently published CISA Advisory (AA24-057A) which details recent Tactics, Techniques, and Procedures (TTPs) exhibited by the Russian Foreign Intelligence ...
DNC Breach Threat Actors Involved In HP Enterprise Hack
In the realm of cybersecurity, recent events have once again brought attention to the persistent and evolving cyber-attack on organizations worldwide. One such incident involves information technology giant Hewlett Packard Enterprise (HPE) ...
APT29 Espionage Attacks: Microsoft Issues Urgent Warning
In a recent announcement, Microsoft issued a warning regarding the increasing activities of APT29, a Russian state-sponsored cyber threat group. This group, notorious for its involvement in espionage attacks on Microsoft‘s systems ...
Behind The Breach: Microsoft Breach by Russian Hackers
On 12 January 2024, Microsoft disclosed a critical breach carried out by Russian state-sponsored group, Midnight Blizzard. The threat actor used a password-spraying attack to gain unauthorized access to Microsoft Corporation’s Office ...
Russia Hacked Microsoft Execs — SolarWinds Hackers at it Again
AKA APT29: Midnight Blizzard / Cozy Bear makes it look easy (and makes Microsoft look insecure) ...
APT29 Leverages Google Drive, Dropbox to Evade Detection
Call them Cozy Bear or APT29 or Nobelium or, as Palo Alto Networks’ Unit 42 does, Cloaked Ursa—no matter what name they go by, Russia’s Intelligence Service is still at it, this ...
New Russian Hacks Revealed—but U.S. Says it’s Microsoft’s Fault
Microsoft has issued another of its “look how clever we are” writeups of detecting APT29 hackers. But the U.S. government sees it differently ...
U.S. Takes Aim at Russia’s Cyber Ops Ecosystem
The Biden administration is taking the Russian cyber operations ecosystem to task with sanctions pointed at both established Russian companies as well as Russian-controlled entities created by the FSB, GRU and SVR ...
U.S. Fingers Putin’s Cozy Bear for SolarWinds Attacks
To the surprise of precisely nobody, the NSA, FBI and CISA agreed that last year’s SolarWinds supply-chain attack was orchestrated by the Russian state ...
Biden ‘Will Cyberattack Putin’ (Because SolarWinds)
President Joe Biden has authorized “devastating” retaliation against the Russian government for the recent hacking attributed to Russia ...