• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Microsoft: Nearly All Russian State Actors Now Targeting Ukraine

You are here: Home / General Cyber Security News / Microsoft: Nearly All Russian State Actors Now Targeting Ukraine
April 8, 2022

Microsoft has claimed partial achievement at disrupting a prolific Russian APT group as it targeted Ukrainian entities this week but warned of a “full-scale offensive” in cyberspace.

Strontium (aka APT28) has been connected to Russia’s most important intelligence agency, the GRU, and was concerned in quite a few politically determined attacks, which includes the hacking and leaking of Democratic Party officials’ email messages ahead of the 2016 US Presidential election.

The team was noticed focusing on Ukrainian establishments, such as media corporations, as perfectly as international coverage govt bodies and think tanks in the US and Europe, in accordance to Microsoft company vice president of consumer security and trust, Tom Burt.

✔ Approved Seller From Our Partners
Mullvad VPN Discount

Protect your privacy by Mullvad VPN. Mullvad VPN is one of the famous brands in the security and privacy world. With Mullvad VPN you will not even be asked for your email address. No log policy, no data from you will be saved. Get your license key now from the official distributor of Mullvad with discount: SerialCart® (Limited Offer).

➤ Get Mullvad VPN with 12% Discount


“We feel Strontium was attempting to build extended-term access to the units of its targets, present tactical guidance for the actual physical invasion and exfiltrate sensitive facts,” he included. “We have notified Ukraine’s government about the action we detected and the motion we’ve taken.”

That motion associated disrupting the infrastructure employed by APT28 to achieve its finishes.

“On Wednesday April 6, we received a court docket purchase authorizing us to consider control of 7 internet domains Strontium was applying to perform these attacks,” Burt stated. “We have given that re-directed these domains to a sinkhole controlled by Microsoft, enabling us to mitigate Strontium’s present use of these domains and permit sufferer notifications.”

Microsoft has proven a rapidly-observe lawful procedure for gaining court docket approval for its takedown endeavours. Just before this 7 days, it utilised this course of action 15 instances to take control of extra than 100 Strontium-controlled domains, Burt claimed.

On the other hand, it’s a regular video game of whack-a-mole, with APT28 sure to switch to substitute infrastructure to keep on its campaign.

Apparently, Burt claimed that “nearly all of Russia’s nation-condition actors” are now engaged in a whole-scale attack on Ukrainian critical infrastructure and federal government. It is unclear what finishes these attacks look for to attain, but multiple destructive malware variants have been learned considering that the commence of the war.

However, that narrative is a little at odds with GCHQ’s consider on Russia’s cyber functions. Director of the spy provider, Jeremy Fleming, said last week that the Kremlin is not on the lookout to obtain a catastrophic “Cyber Pearl Harbor” party.


Some pieces of this article are sourced from:
www.infosecurity-magazine.com

Previous Post: «Cyber Security News Global Supply Chain Attacks Surge 51% in H2 2021
Next Post: YouTube Fraudsters Steal $1.7m in Crypto ‘Giveaway’ Cyber Security News»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • New FjordPhantom Android Malware Targets Banking Apps in Southeast Asia
  • Qakbot Takedown Aftermath: Mitigations and Protecting Against Future Threats
  • Chinese Hackers Using SugarGh0st RAT to Target South Korea and Uzbekistan
  • Discover How Gcore Thwarted Powerful 1.1Tbps and 1.6Tbps DDoS Attacks
  • WhatsApp’s New Secret Code Feature Lets Users Protect Private Chats with Password
  • U.S. Treasury Sanctions North Korean Kimsuky Hackers and 8 Foreign Agents
  • Zyxel Releases Patches to Fix 15 Flaws in NAS, Firewall, and AP Devices
  • Zero-Day Alert: Apple Rolls Out iOS, macOS, and Safari Patches for 2 Actively Exploited Flaws
  • Google Unveils RETVec – Gmail’s New Defense Against Spam and Malicious Emails
  • North Korea’s Lazarus Group Rakes in $3 Billion from Cryptocurrency Hacks

Copyright © TheCyberSecurity.News, All Rights Reserved.