You searched for Fancy Bear | SC Media

Your search for Fancy Bear returned 25 results

Active Filters

Click on a filter below to refine your search. Remove a filter to broaden your search.

Last 2 years remove

Your search for Fancy Bear returned 25 results

Sort Results:

Relevant Recent
APTs/cyberespionage, Malware, Security News

Fancy Bear’s LoJax rootkit has been foraging since late ‘16

The lethal LoJax malware thought to be the handiwork of hacker group Fancy Bear (APT28) came to light only this past May, but most likely had been wreaking havoc since late 2016, reported Netscout researchers from Arbor’s Security Engineering & Response Team (ASERT). With a name derived from the LoJack solution to track stolen cars and…
Cybercrime, Finance, Retail, Security News, Website/Web Server Security

DDoS attackers claim to be Russian APT group, demand ransom

A group of extortionists claiming to be the Russian APT group Fancy Bear launched a ransom denial of service (RDoS) campaign against numerous industry sectors earlier this month, demanding a payment of 2 Bitcoin to stop bombarding victims with amplified traffic. In all likelihood, the attackers are not truly members of a Russian intelligence agency’s…
APTs/cyberespionage, Government/Defense, Security News

Mueller may believe Manafort shared polling data with Russian during campaign

Paul Manafort shared polling data with Konstantin Kilimnik –a businessman linked to the Russian intelligence unit GRU, which hacked the DNC–  at least that’s what Special Counsel Robert Mueller apparently thinks, a poorly redacted court filing by the former Trump campaign manager’s attorneys showed. Details that Manafort met with Kilimnik in Madrid while a member…
APTs/cyberespionage, Cybercrime, Government, Malware, Phishing, Security News

‘Cannon’ downloader tool added to Fancy Bear’s APT arsenal

A new cyber espionage campaign from the Russian APT group Fancy Bear has added some firepower in the form of a new malicious first-stage downloader tool called Cannon. Cannon diverges from Fancy Bear’s (aka Sofacy, APT28) usual downloader trojan, Zebrocy, in that it leverages email protocols for C2 communication as opposed to HTTP or HTTPS.…
Security News

Suspected Chinese TEMP.Periscope phishing campaign adopts Russian APT techniques

The Chinese threat actor TEMP.Periscope is being blamed for a phishing-based malware campaign last July against a U.K.-based engineering company, only researchers say the perpetrators exhibited Russian APT techniques to carry out their mission. A company blog post from Recorded Future’s Insikt Group division reports that the attackers used known, published tactics from reputed Russian…
APTs/cyberespionage, Government, Government/Defense, Security News

State actors may be behind ongoing cyberattack on Austria’s foreign ministry

An ongoing and “serious cyberattack” at Austria’s foreign ministry could be the work of nation-state actors, the country’s government said. The ministry has set up a “coordination committee” to respond to the attack, which started as the country’s Greens party okayed an alliance with conservatives. While the foreign ministry discovered the attack and responded quickly,…
Russia-hack-US-election
APTs/cyberespionage, Malware, Security News, Vulnerabilities

Gamaredon, like Fancy Bear and Cozy Bear, steps up cyberattacks against Ukraine, others

Russia didn’t just ratchet up its aggression toward Ukraine on the high seas last week, it also stepped cyberattacks against the country and other governments and private entities around the world. Familiar threat actors Fancy Bear – using a packed Zebrocy variant and Cannon payload – and Cozy Bear – delivering a Cobalt Strike Beacon…
Officials preparing for cyber attacks, scams as Olympics nears
APTs/cyberespionage, Cybercrime, Security News

Microsoft: Russia again hacks anti-doping and sports agencies

Facing possible exclusion from the 2020 Summer Olympics in Tokyo and other major athletic events, Russia once again has been attempting to hack anti-doping agencies and sports organizations, Microsoft reported yesterday. In attacks that started on Sept. 16, the reputed Russian APT Fancy Bear targeted at least 16 national and international sports organizations across three…
APTs/cyberespionage, Cybercrime, Malware, Security News

The lowdown on LoJax: Researchers detect a UEFI rootkit in the wild

The Russian APT group Sednit (aka Fancy Bear and APT28) is strongly suspected to be the culprit behind a new rootkit malware program that can survive on an infected machine even if the operating system is reinstalled and the hard drive is replaced. ESET researchers who discovered the rootkit say this is the first time…
Next post in APTs/cyberespionage