In Switch, Trickbot Group Now Attacking Ukrainian Targets
Latest campaigns are a break from its usual financially motivated attacks and appear aligned with Russian interests, security researchers say.
Coverage of cybersecurity incidents, policy, privacy, public services, advisories, and regional developments connected to Russia.
Search across headline titles and summaries.
Background for this topic.
Russia covers cybersecurity and information-security developments connected to Russia, including incidents, policy, privacy, advisories, research, and news affecting organizations, public services, and digital systems in the area.
For practitioners, the tag provides geographic context for developments involving Russia's organizations, services, partners, and users. Individual articles provide the specific technologies, threats, sectors, and operational implications relevant to each development.
Latest campaigns are a break from its usual financially motivated attacks and appear aligned with Russian interests, security researchers say.
A malicious browser extension with 350 variants is masquerading as a Google Translate add-on as part of an adware campaign targeting Russian users of Google Chrome, Opera, and Mozilla Firefox browsers
A new investigation finds that a Chinese APT group is targeting Russian organizations with RAT backdoors
In what's being described as an "unprecedented" twist, the operators of the TrickBot malware have resorted to systematically targeting Ukraine since the onset of the war in late February 2022
In a significant spike of activity, the state-sponsored group is going after intelligence on Russian government agencies.
Singapore's Group-IB was once a Moscow startup and will now conduct 'regional diversification' Singapore-based security vendor and services provider Group-IB has commenced a "regional diversification" program that will see it not just continue to operate in Russia (unlike a great many other companies), but do so with a dedicated entity.…
Recorded Future claims Kremlin is using multiple outlets to amplify disinfo
Agency warns Russian threat will remain elevated for a long time
The fun folk who attacked Solar Winds using a poisoned CV and tools from the murky world of commercial hackware Palo Alto Networks' Unit 42 threat intelligence team has claimed that a piece of malware that 56 antivirus products were unable to detect is evidence that state-backed attackers have found new ways to go about the evil business.…
Change is a part of life, and nothing stays the same for too long, even with hacking groups, which are at their most dangerous when working in complete silence. The notorious REvil ransomware gang, linked to the infamous JBS and Kaseya, has resurfaced three months after the arrest of its members in Russia