#apt29 — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #apt29, aggregated by home.social.
-
How Russia-Linked Spies Turned Everyday Websites into Surveillance Traps aka ‘Watering Hole’ https://thecyberexpress.com/russian-linked-spies-watering-hole-traps/ #ThreatIntelligenceNews #WateringHoleAttacks #AmazonWebServices #FirewallDaily #ThreatActors #wateringhole #RussianSVR #CyberNews #APT29 #AWS #SVR
-
How Russia-Linked Spies Turned Everyday Websites into Surveillance Traps aka ‘Watering Hole’ https://thecyberexpress.com/russian-linked-spies-watering-hole-traps/ #ThreatIntelligenceNews #WateringHoleAttacks #AmazonWebServices #FirewallDaily #ThreatActors #wateringhole #RussianSVR #CyberNews #APT29 #AWS #SVR
-
How Russia-Linked Spies Turned Everyday Websites into Surveillance Traps aka ‘Watering Hole’ https://thecyberexpress.com/russian-linked-spies-watering-hole-traps/ #ThreatIntelligenceNews #WateringHoleAttacks #AmazonWebServices #FirewallDaily #ThreatActors #wateringhole #RussianSVR #CyberNews #APT29 #AWS #SVR
-
Amazon blocks APT29 campaign targeting Microsoft device code authentication – Source: securityaffairs.com https://ciso2ciso.com/amazon-blocks-apt29-campaign-targeting-microsoft-device-code-authentication-source-securityaffairs-com/ #rssfeedpostgeneratorecho #informationsecuritynews #ITInformationSecurity #SecurityAffairscom #CyberSecurityNews #PierluigiPaganini #SecurityAffairs #SecurityAffairs #Cyberespionage #BreakingNews #Intelligence #SecurityNews #hackingnews #hacking #Amazon #Russia #APT29
-
Happy Friday everyone!
A Joint Advisory from the National Security Agency, Federal Bureau of Investigation (FBI), Cyber National Mission Force, and the National Cyber Security Centre provides updates on the Russian Federation's Foreign Intelligence Service, or #SVR.
According to the advisory, #APT29 (a.k.a Midnight Blizzard, Cozy Bear, and the Dukes) has targeted the defense, technology, and finance sectors to collect foreign intelligence and enable future cyber operations. They aim to exploit software vulnerabilities for initial access and escalate privileges. They also utilize spearphishing campaigns, password spraying, abuse of supply chain and trusted relationships. They also utilize custom malware and living-off-the-land (LOLBINs) techniques for multiple techniques.
The report includes a list of #CVEs that APT29 has been observed exploiting and attach the vendor and product that are effected with details that describe the vulnerability along with a section of mitigations that your organization can take to increase your security posture.
If you are looking for behaviors that are attributed to APT29, look no further than the MITRE ATT&CK Matrix! This resource has collected historic #TTPs and behaviors and referenced them as well. So while you are working on hardening your environment you can also hunt for their activity as well! Enjoy and Happy Hunting!
Article Source:
Update on SVR Cyber Operations and Vulnerability Exploitation
https://www.ic3.gov/Media/News/2024/241010.pdfMitre source:
https://attack.mitre.org/groups/G0016/Intel 471 #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting #readoftheday #huntoftheday #gethunting Cyborg Security, Now Part of Intel 471
-
📬 Sicherheitsvorfall bei TeamViewer: Steckt der russische Geheimdienst dahinter?
#ITSicherheit #APT29 #CozyBear #HealthISAC #NCCGroup #Sicherheitsvorfall #TeamViewer https://sc.tarnkappe.info/ce70e5
