Russia Archives - Cyber Security Minute

Russian Influence Duo Targets Politicians, CEOs for Embarrassing Video Calls

Issued by: Dark Reading

A Russian duo notorious for pranking numerous high-profile individuals, including Canadian Prime Minister Trudeau, is at it again — this time seeking to embarrass public figures that have expressed support for Ukraine in its war with Russia. Over the past year, the two individuals — known publicly as Vovan and Lexus — have targeted high-ranking…

Malware & Threats

Pre-Deepfake Campaign Targets Putin Critics

Issued by: Security Week

Russia is continuing its campaign of disinformation around the Ukraine war through advanced social engineering delivered by a threat group tracked as TA499. According to a report from Proofpoint, TA499 targets US and European politicians, and leading businessmen and celebrities who have spoken out against Putin’s invasion. The primary purpose is to persuade the victims…

Vulnerabilities

Trickbot Members Sanctioned for Pandemic-Era Ransomware Hits

Issued by: Dark Reading

The US and the UK have issued joint sanctions against alleged members of the TrickBot cybercrime gang for their role in cyberattacks against critical infrastructure. Trickbot, as a malware, began life as a lowly banking Trojan before its authors started adding modules for other forms of malicious activity. It thus evolved into a multifaceted cyber-Swiss…

Malware & Threats

US, UK Slap Sanctions on Trickbot Cybercrime Gang

Issued by: Security Week

The seven individuals are being blamed for a series of major ransomware attacks targeting organizations in the US and the United Kingdom and the Treasury Department said it has information linking the hacking group to Russian intelligence services. “Current members of the Trickbot Group are associated with Russian Intelligence Services. The Trickbot Group’s preparations in…

Malware & Threats

Russian Millionaire on Trial in Hack, Insider Trade Scheme

Issued by: Security Week

A wealthy Russian businessman and associates made tens of millions of dollars by cheating the stock market in an elaborate scheme that involved hacking into U.S. computer networks to steal insider information about companies such as Microsoft and Tesla, a prosecutor told jurors on Monday. Vladislav Klyushin, the owner a Moscow-based information technology company with…

Malware & Threats

Cybercriminals Apparently Involved in Russia-Linked Attack on Montenegro Government

Issued by: Security Week

The country’s Agency for National Security announced last week that government servers had been targeted in an ongoing attack that was described as massive and coordinated. The attack targeted government systems and other critical infrastructure, and managed to cause some disruptions. The US embassy warned citizens residing in the country that the attack could disrupt…

Malware & Threats

Google Blocks Domains of Hack-for-Hire Groups in Russia, India, UAE

Issued by: Security Week

The internet giant has added more than 30 domains used by these threat groups to its Safe Browsing mechanism, which prevents users from accessing them. Hack-for-hire groups are often conflated with entities offering surveillance tools. Google has pointed out that surveillance vendors typically provide the tools needed for spying but leave it up to the…

Malware & Threats

Conti Ransomware Activity Surges Despite Exposure of Group’s Operations

Issued by: Security Week

An individual claiming to be a Ukrainian cybersecurity researcher has leaked vast amounts of data belonging to the Conti group, including malware source code, chat logs, credentials, email addresses, and C&C server details. The files were leaked in response to the hackers expressing support for the Russian government as it began its invasion of Ukraine….

Network Security

FBI-Led Operation Disrupts Russian GRU Botnet

Issued by: Dark Reading

The FBI in March targeted and disabled the command and control communications of a botnet controlled by the infamous Russian General Staff Main Intelligence Directorate (GRU) hacking team Sandworm, the US Department of Justice (DoJ) announced today. The botnet used WatchGuard Technologies and ASUSTek Computer (ASUS) firewalls compromised with the so-called Cyclops Blink malware, which…

Malware & Threats

Ukrainian Security Researcher Leaks Newer Conti Ransomware Source Code

Issued by: Security Week

Shortly after Russia launched its invasion of Ukraine, the notorious Conti ransomware group issued a statement warning that it was prepared to hit the critical infrastructure of Russia’s enemies in retaliation for potential attacks on Russia. In response, an anonymous individual set up a Twitter account named “Conti Leaks” and started releasing files allegedly stolen…