#coldriver — Public Fediverse posts

🇷🇺 French NGO Reporters Without Borders targeted by #Calisto in recent campaign

Sekoia #TDR analysed a recent #Calisto (aka #ColdRiver #Star Blizzard) spear-phishing campaign aimed at Reporters sans frontières and other #Ukraine-supporting organisations.

https://blog.sekoia.io/ngo-reporters-without-borders-targeted-by-calisto-in-recent-campaign/

Russian State-Sponsored COLDRIVER Group Deploys New Malware After Exposure of LOSTKEYS https://thecyberexpress.com/coldriver-new-malware-after-lostkeys-exposure/ #TheCyberExpressNews #TheCyberExpress #DataBreachNews #FirewallDaily #StarBlizzard #COLDRIVER #Callisto #COLDCOPY #LOSTKEYS #UNC4057

Russian State-Sponsored COLDRIVER Group Deploys New Malware After Exposure of LOSTKEYS https://thecyberexpress.com/coldriver-new-malware-after-lostkeys-exposure/ #TheCyberExpressNews #TheCyberExpress #DataBreachNews #FirewallDaily #StarBlizzard #COLDRIVER #Callisto #COLDCOPY #LOSTKEYS #UNC4057

Russian State-Sponsored COLDRIVER Group Deploys New Malware After Exposure of LOSTKEYS https://thecyberexpress.com/coldriver-new-malware-after-lostkeys-exposure/ #TheCyberExpressNews #TheCyberExpress #DataBreachNews #FirewallDaily #StarBlizzard #COLDRIVER #Callisto #COLDCOPY #LOSTKEYS #UNC4057

Russian State-Sponsored COLDRIVER Group Deploys New Malware After Exposure of LOSTKEYS https://thecyberexpress.com/coldriver-new-malware-after-lostkeys-exposure/ #TheCyberExpressNews #TheCyberExpress #DataBreachNews #FirewallDaily #StarBlizzard #COLDRIVER #Callisto #COLDCOPY #LOSTKEYS #UNC4057

To Be (A Robot) or Not to Be: New Malware Attributed to Russia State-Sponsored COLDRIVER
#COLDRIVER #NOROBOT #YESROBOT
https://cloud.google.com/blog/topics/threat-intelligence/new-malware-russia-coldriver

To Be (A Robot) or Not to Be: New Malware Attributed to Russia State-Sponsored COLDRIVER
#COLDRIVER #NOROBOT #YESROBOT
https://cloud.google.com/blog/topics/threat-intelligence/new-malware-russia-coldriver

To Be (A Robot) or Not to Be: New Malware Attributed to Russia State-Sponsored COLDRIVER
#COLDRIVER #NOROBOT #YESROBOT
https://cloud.google.com/blog/topics/threat-intelligence/new-malware-russia-coldriver

To Be (A Robot) or Not to Be: New Malware Attributed to Russia State-Sponsored COLDRIVER
#COLDRIVER #NOROBOT #YESROBOT
https://cloud.google.com/blog/topics/threat-intelligence/new-malware-russia-coldriver

To Be (A Robot) or Not to Be: New Malware Attributed to Russia State-Sponsored COLDRIVER
#COLDRIVER #NOROBOT #YESROBOT
https://cloud.google.com/blog/topics/threat-intelligence/new-malware-russia-coldriver

COLDRIVER Updates Arsenal with BAITSWITCH and SIMPLEFIX
#COLDRIVER #SIMPLEFIX #BAITSWITCH
https://www.zscaler.com/blogs/security-research/coldriver-updates-arsenal-baitswitch-and-simplefix

COLDRIVER Updates Arsenal with BAITSWITCH and SIMPLEFIX
#COLDRIVER #SIMPLEFIX #BAITSWITCH
https://www.zscaler.com/blogs/security-research/coldriver-updates-arsenal-baitswitch-and-simplefix

COLDRIVER Updates Arsenal with BAITSWITCH and SIMPLEFIX
#COLDRIVER #SIMPLEFIX #BAITSWITCH
https://www.zscaler.com/blogs/security-research/coldriver-updates-arsenal-baitswitch-and-simplefix

COLDRIVER Updates Arsenal with BAITSWITCH and SIMPLEFIX
#COLDRIVER #SIMPLEFIX #BAITSWITCH
https://www.zscaler.com/blogs/security-research/coldriver-updates-arsenal-baitswitch-and-simplefix

COLDRIVER Updates Arsenal with BAITSWITCH and SIMPLEFIX
#COLDRIVER #SIMPLEFIX #BAITSWITCH
https://www.zscaler.com/blogs/security-research/coldriver-updates-arsenal-baitswitch-and-simplefix

Russia-linked ColdRiver used LostKeys malware in recent attacks – Source: securityaffairs.com https://ciso2ciso.com/russia-linked-coldriver-used-lostkeys-malware-in-recent-attacks-source-securityaffairs-com/ #rssfeedpostgeneratorecho #informationsecuritynews #ITInformationSecurity #SecurityAffairscom #CyberSecurityNews #PierluigiPaganini #SecurityAffairs #SecurityAffairs #BreakingNews #Intelligence #SecurityNews #hackingnews #COLDRIVER #LostKeys #hacking #Malware #Russia #APT

COLDRIVER Using New Malware To Steal Documents From Western Targets and NGOs
#COLDRIVER #LOSTKEYS
https://cloud.google.com/blog/topics/threat-intelligence/coldriver-steal-documents-western-targets-ngos

Highly-Personalized Phishing Campaign Targets Russian Government Dissidents https://thecyberexpress.com/coldriver-russian-government-dissidents/ #RussianFederalSecurityService #CybersecurityNews #FirewallDaily #CitizenLab #COLDRIVER #Belarus #Ukraine #Russia #West #FSB

We connected the phishing to #COLDRIVER, a threat actor attributed to the Russian Federal Security Service (FSB) by multiple governments. The attackers typically sought to trick targets into entering their credentials by credibly impersonating colleagues and professional acquaintances, then sharing fake “encrypted” or “protected” files for review.

Read Access Now’s reports here: https://accessnow.org/russian-phishing-campaigns

Stark Industries Solutions: An Iron Hammer in the Cloud – Source: krebsonsecurity.com https://ciso2ciso.com/stark-industries-solutions-an-iron-hammer-in-the-cloud-source-krebsonsecurity-com/ #rssfeedpostgeneratorecho #ConstellaIntelligence #RussiasWaronUkraine #CyberSecurityNews #ALittleSunshine #KrebsonSecurity #KrebsOnSecurity #RecordedFuture #CallistoGroup #Breadcrumbs #DDoSforHire #Seaborgium #COLDRIVER #TeamCymru #Intel471 #Netscout #spamhaus #Lockbit #DDoSia #eset

Stark Industries Solutions: An Iron Hammer in the Cloud – Source: krebsonsecurity.com https://ciso2ciso.com/stark-industries-solutions-an-iron-hammer-in-the-cloud-source-krebsonsecurity-com/ #rssfeedpostgeneratorecho #ConstellaIntelligence #RussiasWaronUkraine #CyberSecurityNews #ALittleSunshine #KrebsonSecurity #KrebsOnSecurity #RecordedFuture #CallistoGroup #Breadcrumbs #DDoSforHire #Seaborgium #COLDRIVER #TeamCymru #Intel471 #Netscout #spamhaus #Lockbit #DDoSia #eset

Stark Industries Solutions: An Iron Hammer in the Cloud – Source: krebsonsecurity.com https://ciso2ciso.com/stark-industries-solutions-an-iron-hammer-in-the-cloud-source-krebsonsecurity-com/ #rssfeedpostgeneratorecho #ConstellaIntelligence #RussiasWaronUkraine #CyberSecurityNews #ALittleSunshine #KrebsonSecurity #KrebsOnSecurity #RecordedFuture #CallistoGroup #Breadcrumbs #DDoSforHire #Seaborgium #COLDRIVER #TeamCymru #Intel471 #Netscout #spamhaus #Lockbit #DDoSia #eset

Stark Industries Solutions: An Iron Hammer in the Cloud – Source: krebsonsecurity.com https://ciso2ciso.com/stark-industries-solutions-an-iron-hammer-in-the-cloud-source-krebsonsecurity-com/ #rssfeedpostgeneratorecho #ConstellaIntelligence #RussiasWaronUkraine #CyberSecurityNews #ALittleSunshine #KrebsonSecurity #KrebsOnSecurity #RecordedFuture #CallistoGroup #Breadcrumbs #DDoSforHire #Seaborgium #COLDRIVER #TeamCymru #Intel471 #Netscout #spamhaus #Lockbit #DDoSia #eset

The threat actor has also adopted password-protected PDF lures embedded with links, hosted on Proton Drive, to evade email security measures.

#Cybersecurity #COLDRIVER #DataTheft #HackerGroup #Microsoft

https://cybersec84.wordpress.com/2023/12/08/microsoft-alerts-on-coldrivers-persistent-credential-theft-techniques/

Russia Backed Star Blizzard’s Infiltration Attempts in UK Elections Laid Bare https://thecyberexpress.com/russia-backed-uk-election-interference-exposed/ #TheCyberExpressNews #TheCyberExpress #FirewallDaily #CallistoGroup #StarBlizzard #BlueCharlie #SEABORGIUM #COLDRIVER #TAG-53 #TA446

Russia Backed Star Blizzard’s Infiltration Attempts in UK Elections Laid Bare https://thecyberexpress.com/russia-backed-uk-election-interference-exposed/ #TheCyberExpressNews #TheCyberExpress #FirewallDaily #CallistoGroup #StarBlizzard #BlueCharlie #SEABORGIUM #COLDRIVER #TAG-53 #TA446

Reuters reported that a Russian hacker group known as #ColdRiver attempted to gain unauthorized access to three major #nuclear laboratories in the USA.

The threat actors, believed to be located in Russia, launched multiple #phishing attacks targeting the following national laboratories – Argonne, Lawrence Livermore, and Brookhaven.

These nuclear labs are known for numerous scientific breakthroughs in atomic technologies and #nationalsecurity. https://www.pandasecurity.com/en/mediacenter/security/russian-hacker-nuclear-labs | #cybersecurity #cyberwarfare

#Russian #Hackering goup #ColdRiver Tried to Break Into the U.S.'s Top #Nuclear Labs: Report
The national laboratories research everything from #nuclearfusion power to maintaining America's stockpile of #warheads. https://bit.ly/3k6Imxh

Ciblage d'organismes de recherche sur le nucléaire américains par un mode opératoire d'attaque probablement lié au gouvernement russe

#cybertrucs #cybersecurity #ColdRiver #Callisto

https://www.reuters.com/world/europe/russian-hackers-targeted-us-nuclear-scientists-2023-01-06/

When I read stories like this I always wonder about the hacks that we DON'T know about.

"A Russian hacking team known as Cold River targeted three nuclear research laboratories in the United States this past summer... creating fake login pages for each institution and emailing nuclear scientists in a bid to make them reveal their passwords."

#Russia #hackers #ColdRiver #phishing

https://www.reuters.com/world/europe/russian-hackers-targeted-us-nuclear-scientists-2023-01-06/