#turla — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #turla, aggregated by home.social.
-
📰 Russian APT Turla Evolves Kazuar Backdoor into Stealthy P2P Botnet
🇷🇺 Russian APT Turla has upgraded its Kazuar backdoor into a modular P2P botnet. The new architecture enhances stealth and resilience, making it harder to detect and disrupt. The focus remains on long-term espionage. #Turla #APT #Kazuar #CyberSecur...
🌐 cyber[.]netsecops[.]io
-
Kazuar si evolve: Secret Blizzard (Turla) trasforma il suo backdoor storico in una botnet P2P modulare invisibile
Il gruppo russo Secret Blizzard (Turla/FSB) ha trasformato il malware Kazuar in una botnet peer-to-peer con tre moduli distinti (Kernel, Bridge, Worker) e 150 parametri di configurazione. La nuova architettura usa un sistema di elezione del leader per ridurre al minimo il traffico verso i server C2, rendendo il rilevamento estremamente difficile. Obiettivi: governi, ambasciate e settore difesa in Europa e Ucraina. -
Kazuar si evolve: Secret Blizzard (Turla) trasforma il suo backdoor storico in una botnet P2P modulare invisibile
Il gruppo russo Secret Blizzard (Turla/FSB) ha trasformato il malware Kazuar in una botnet peer-to-peer con tre moduli distinti (Kernel, Bridge, Worker) e 150 parametri di configurazione. La nuova architettura usa un sistema di elezione del leader per ridurre al minimo il traffico verso i server C2, rendendo il rilevamento estremamente difficile. Obiettivi: governi, ambasciate e settore difesa in Europa e Ucraina. -
Kazuar si evolve: Secret Blizzard (Turla) trasforma il suo backdoor storico in una botnet P2P modulare invisibile
Il gruppo russo Secret Blizzard (Turla/FSB) ha trasformato il malware Kazuar in una botnet peer-to-peer con tre moduli distinti (Kernel, Bridge, Worker) e 150 parametri di configurazione. La nuova architettura usa un sistema di elezione del leader per ridurre al minimo il traffico verso i server C2, rendendo il rilevamento estremamente difficile. Obiettivi: governi, ambasciate e settore difesa in Europa e Ucraina. -
Kazuar si evolve: Secret Blizzard (Turla) trasforma il suo backdoor storico in una botnet P2P modulare invisibile
Il gruppo russo Secret Blizzard (Turla/FSB) ha trasformato il malware Kazuar in una botnet peer-to-peer con tre moduli distinti (Kernel, Bridge, Worker) e 150 parametri di configurazione. La nuova architettura usa un sistema di elezione del leader per ridurre al minimo il traffico verso i server C2, rendendo il rilevamento estremamente difficile. Obiettivi: governi, ambasciate e settore difesa in Europa e Ucraina. -
Kazuar si evolve: Secret Blizzard (Turla) trasforma il suo backdoor storico in una botnet P2P modulare invisibile
Il gruppo russo Secret Blizzard (Turla/FSB) ha trasformato il malware Kazuar in una botnet peer-to-peer con tre moduli distinti (Kernel, Bridge, Worker) e 150 parametri di configurazione. La nuova architettura usa un sistema di elezione del leader per ridurre al minimo il traffico verso i server C2, rendendo il rilevamento estremamente difficile. Obiettivi: governi, ambasciate e settore difesa in Europa e Ucraina. -
Russian Hackers Upgrade Kazuar Backdoor to Modular Botnet
Microsoft researchers have uncovered a significant upgrade to the Kazuar backdoor, transforming it into a modular peer-to-peer botnet by the notorious Russian hacker group, Secret Blizzard. This sophisticated tool has been used to target high-stakes organizations and critical systems across Europe, Asia, and Ukraine.
#RussianHackers #KazuarBackdoor #ModularBotnet #SecretBlizzard #Turla
-
Turla Upgrades Kazuar Backdoor to Modular P2P Botnet
Microsoft's Threat Intelligence team has uncovered a significant upgrade to the Kazuar backdoor by the notorious Russian state-sponsored group Turla, now a modular P2P botnet designed for long-term intelligence collection. This move enables Turla to maintain a persistent grip on compromised systems.
-
Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088
#CVE_2025_8088 #RomComGroup #APT44 #TEMP.Armageddon #Gamaredon #Turla #zeroplayer
https://cloud.google.com/blog/topics/threat-intelligence/exploiting-critical-winrar-vulnerability -
Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088
#CVE_2025_8088 #RomComGroup #APT44 #TEMP.Armageddon #Gamaredon #Turla #zeroplayer
https://cloud.google.com/blog/topics/threat-intelligence/exploiting-critical-winrar-vulnerability -
Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088
#CVE_2025_8088 #RomComGroup #APT44 #TEMP.Armageddon #Gamaredon #Turla #zeroplayer
https://cloud.google.com/blog/topics/threat-intelligence/exploiting-critical-winrar-vulnerability -
Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088
#CVE_2025_8088 #RomComGroup #APT44 #TEMP.Armageddon #Gamaredon #Turla #zeroplayer
https://cloud.google.com/blog/topics/threat-intelligence/exploiting-critical-winrar-vulnerability -
Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088
#CVE_2025_8088 #RomComGroup #APT44 #TEMP.Armageddon #Gamaredon #Turla #zeroplayer
https://cloud.google.com/blog/topics/threat-intelligence/exploiting-critical-winrar-vulnerability -
COMmand & Evade: Turla's Kazuar v3 Loader
#Turla #KazuarV3Loader
https://r136a1.dev/2026/01/14/command-and-evade-turlas-kazuar-v3-loader/ -
COMmand & Evade: Turla's Kazuar v3 Loader
#Turla #KazuarV3Loader
https://r136a1.dev/2026/01/14/command-and-evade-turlas-kazuar-v3-loader/ -
COMmand & Evade: Turla's Kazuar v3 Loader
#Turla #KazuarV3Loader
https://r136a1.dev/2026/01/14/command-and-evade-turlas-kazuar-v3-loader/ -
COMmand & Evade: Turla's Kazuar v3 Loader
#Turla #KazuarV3Loader
https://r136a1.dev/2026/01/14/command-and-evade-turlas-kazuar-v3-loader/ -
COMmand & Evade: Turla's Kazuar v3 Loader
#Turla #KazuarV3Loader
https://r136a1.dev/2026/01/14/command-and-evade-turlas-kazuar-v3-loader/ -
Two of the Kremlin’s most active hack groups are collaborating, ESET says - Two of the Kremlin’s most active hacking units recently were... - https://arstechnica.com/security/2025/09/two-of-the-kremlins-most-active-hack-groups-are-collaborating-eset-says/ #advancedpersistentthreat #gamaredon #security #biz #russia #turla #apt
-
Two of the Kremlin’s most active hack groups are collaborating, ESET says - Two of the Kremlin’s most active hacking units recently were... - https://arstechnica.com/security/2025/09/two-of-the-kremlins-most-active-hack-groups-are-collaborating-eset-says/ #advancedpersistentthreat #gamaredon #security #biz #russia #turla #apt
-
Two of the Kremlin’s most active hack groups are collaborating, ESET says - Two of the Kremlin’s most active hacking units recently were... - https://arstechnica.com/security/2025/09/two-of-the-kremlins-most-active-hack-groups-are-collaborating-eset-says/ #advancedpersistentthreat #gamaredon #security #biz #russia #turla #apt
-
Two of the Kremlin’s most active hack groups are collaborating, ESET says - Two of the Kremlin’s most active hacking units recently were... - https://arstechnica.com/security/2025/09/two-of-the-kremlins-most-active-hack-groups-are-collaborating-eset-says/ #advancedpersistentthreat #gamaredon #security #biz #russia #turla #apt
-
Two of the Kremlin’s most active hack groups are collaborating, ESET says - Two of the Kremlin’s most active hacking units recently were... - https://arstechnica.com/security/2025/09/two-of-the-kremlins-most-active-hack-groups-are-collaborating-eset-says/ #advancedpersistentthreat #gamaredon #security #biz #russia #turla #apt
-
Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions https://www.securityweek.com/turla-and-gamaredon-working-together-in-fresh-ukrainian-intrusions/ #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla
-
Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions https://www.securityweek.com/turla-and-gamaredon-working-together-in-fresh-ukrainian-intrusions/ #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla
-
Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions https://www.securityweek.com/turla-and-gamaredon-working-together-in-fresh-ukrainian-intrusions/ #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla
-
Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions https://www.securityweek.com/turla-and-gamaredon-working-together-in-fresh-ukrainian-intrusions/ #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla
-
Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions https://www.securityweek.com/turla-and-gamaredon-working-together-in-fresh-ukrainian-intrusions/ #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla
-
Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions https://www.securityweek.com/turla-and-gamaredon-working-together-in-fresh-ukrainian-intrusions/ #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla
-
Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions https://www.securityweek.com/turla-and-gamaredon-working-together-in-fresh-ukrainian-intrusions/ #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla
-
Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions https://www.securityweek.com/turla-and-gamaredon-working-together-in-fresh-ukrainian-intrusions/ #Malware&Threats #Gamaredon #malware #Ukraine #Russia #Turla
-
Secret Blizzard Attack Detection: russia-Backed APT Targets Foreign Embassies in Moscow With ApolloShadow Malware – Source: socprime.com https://ciso2ciso.com/secret-blizzard-attack-detection-russia-backed-apt-targets-foreign-embassies-in-moscow-with-apolloshadow-malware-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #SecretBlizzard #Latestthreats #ApolloShadow #socprimecom #socprime #Turla #Blog #APT
-
Secret Blizzard Attack Detection: russia-Backed APT Targets Foreign Embassies in Moscow With ApolloShadow Malware – Source: socprime.com https://ciso2ciso.com/secret-blizzard-attack-detection-russia-backed-apt-targets-foreign-embassies-in-moscow-with-apolloshadow-malware-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #SecretBlizzard #Latestthreats #ApolloShadow #socprimecom #socprime #Turla #Blog #APT
-
Secret Blizzard Attack Detection: russia-Backed APT Targets Foreign Embassies in Moscow With ApolloShadow Malware – Source: socprime.com https://ciso2ciso.com/secret-blizzard-attack-detection-russia-backed-apt-targets-foreign-embassies-in-moscow-with-apolloshadow-malware-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #SecretBlizzard #Latestthreats #ApolloShadow #socprimecom #socprime #Turla #Blog #APT
-
Secret Blizzard Attack Detection: russia-Backed APT Targets Foreign Embassies in Moscow With ApolloShadow Malware – Source: socprime.com https://ciso2ciso.com/secret-blizzard-attack-detection-russia-backed-apt-targets-foreign-embassies-in-moscow-with-apolloshadow-malware-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #SecretBlizzard #Latestthreats #ApolloShadow #socprimecom #socprime #Turla #Blog #APT
-
Russia uses domestic ISPs to spy on diplomats, warns Microsoft
https://www.databreachtoday.com/russia-uses-isps-to-spy-on-diplomats-warns-microsoft-a-29113 #SecretBlizzard #Turla -
Russia uses domestic ISPs to spy on diplomats, warns Microsoft
https://www.databreachtoday.com/russia-uses-isps-to-spy-on-diplomats-warns-microsoft-a-29113 #SecretBlizzard #Turla -
Russia uses domestic ISPs to spy on diplomats, warns Microsoft
https://www.databreachtoday.com/russia-uses-isps-to-spy-on-diplomats-warns-microsoft-a-29113 #SecretBlizzard #Turla -
Russia uses domestic ISPs to spy on diplomats, warns Microsoft
https://www.databreachtoday.com/russia-uses-isps-to-spy-on-diplomats-warns-microsoft-a-29113 #SecretBlizzard #Turla -
Russia uses domestic ISPs to spy on diplomats, warns Microsoft
https://www.databreachtoday.com/russia-uses-isps-to-spy-on-diplomats-warns-microsoft-a-29113 #SecretBlizzard #Turla -
The Kremlin's Most Devious #Hacking Group Is Using #Russian ISPs to Plant #Spyware
The #FSB #cyberespionage group known as #Turla seems to have used its control of Russia's network #infrastructure to meddle with web traffic and trick #diplomats into #infecting their computers.
#russia #kremlin #isphttps://www.wired.com/story/russia-fsb-turla-secret-blizzard-apolloshadow-isp-cyberespionage/
-
The Kremlin's Most Devious #Hacking Group Is Using #Russian ISPs to Plant #Spyware
The #FSB #cyberespionage group known as #Turla seems to have used its control of Russia's network #infrastructure to meddle with web traffic and trick #diplomats into #infecting their computers.
#russia #kremlin #isphttps://www.wired.com/story/russia-fsb-turla-secret-blizzard-apolloshadow-isp-cyberespionage/
-
The Kremlin's Most Devious #Hacking Group Is Using #Russian ISPs to Plant #Spyware
The #FSB #cyberespionage group known as #Turla seems to have used its control of Russia's network #infrastructure to meddle with web traffic and trick #diplomats into #infecting their computers.
#russia #kremlin #isphttps://www.wired.com/story/russia-fsb-turla-secret-blizzard-apolloshadow-isp-cyberespionage/
-
The Kremlin's Most Devious #Hacking Group Is Using #Russian ISPs to Plant #Spyware
The #FSB #cyberespionage group known as #Turla seems to have used its control of Russia's network #infrastructure to meddle with web traffic and trick #diplomats into #infecting their computers.
#russia #kremlin #isphttps://www.wired.com/story/russia-fsb-turla-secret-blizzard-apolloshadow-isp-cyberespionage/
-
The Kremlin's Most Devious #Hacking Group Is Using #Russian ISPs to Plant #Spyware
The #FSB #cyberespionage group known as #Turla seems to have used its control of Russia's network #infrastructure to meddle with web traffic and trick #diplomats into #infecting their computers.
#russia #kremlin #isphttps://www.wired.com/story/russia-fsb-turla-secret-blizzard-apolloshadow-isp-cyberespionage/
-
🇷🇺 Selon #Microsoft, le groupe de hackers #Turla lié au FSB auraient exploité les FAI russes pour installer un faux "update" dans les ambassades de Moscou, désactivant le chiffrement des communications. #cyber https://www.wired.com/story/russia-fsb-turla-secret-blizzard-apolloshadow-isp-cyberespionage/
-
🇷🇺 Selon #Microsoft, le groupe de hackers #Turla lié au FSB auraient exploité les FAI russes pour installer un faux "update" dans les ambassades de Moscou, désactivant le chiffrement des communications. #cyber https://www.wired.com/story/russia-fsb-turla-secret-blizzard-apolloshadow-isp-cyberespionage/
-
Microsoft found #Turla, 🇷🇺 elite FSB #cyberespionage group, hacking foreign embassies' staff in Moscow by directly meddling with ISP traffic to infect targets with #spyware that silently stripped away encryption on their communications & credentials.
🔗 https://www.wired.com/story/russia-fsb-turla-secret-blizzard-apolloshadow-isp-cyberespionage/
-
Microsoft found #Turla, 🇷🇺 elite FSB #cyberespionage group, hacking foreign embassies' staff in Moscow by directly meddling with ISP traffic to infect targets with #spyware that silently stripped away encryption on their communications & credentials.
🔗 https://www.wired.com/story/russia-fsb-turla-secret-blizzard-apolloshadow-isp-cyberespionage/
-
Microsoft: Russian State Hackers Are Spying on Embassies via ISP-Level Attacks
#CyberSecurity #Russia #Microsoft #Hacking #FSB #Turla #ThreatIntel