A Russian national has been charged and indicted by the U.S. Department of Justice (DoJ) for launching ransomware attacks against "thousands of victims" in the country and across the world. Mikhail Pavlovich Matveev (aka Wazawaka, m1x, Boriselcin, and Uhodiransomwar), the 30-year-old individual in question, is alleged to be a "central figure" in the development and deployment of LockBit, Babuk,

Related tags
May 17^th 2023 at 05:29

News ≈ Packet Storm
How One Of Vladimir Putin's Most Prized Hacking Units Got Pwned By The FBI
May 10^th 2023 at 15:17

How One Of Vladimir Putin's Most Prized Hacking Units Got Pwned By The FBI

Related tags
- ❌
- headline,hacker,government,usa,russia,cyberwar,fbi,military
May 10^th 2023 at 15:17

The Hacker News
CERT-UA Warns of SmokeLoader and RoarBAT Malware Attacks Against Ukraine
May 8^th 2023 at 06:10

CERT-UA Warns of SmokeLoader and RoarBAT Malware Attacks Against Ukraine

By Ravie Lakshmanan

An ongoing phishing campaign with invoice-themed lures is being used to distribute the SmokeLoader malware in the form of a polyglot file, according to the Computer Emergency Response Team of Ukraine (CERT-UA). The emails, per the agency, are sent using compromised accounts and come with a ZIP archive that, in reality, is a polyglot file containing a decoy document and a JavaScript file. The

Related tags
May 8^th 2023 at 06:10

News ≈ Packet Storm
Russia's APT28 Targets Ukraine With Bogus Windows Updates
May 2^nd 2023 at 15:25

Russia's APT28 Targets Ukraine With Bogus Windows Updates

Related tags
- ❌
- headline,government,malware,microsoft,russia,cyberwar
May 2^nd 2023 at 15:25

News ≈ Packet Storm
Pro-Russian Hackers Target European Air Traffic Control
April 24^th 2023 at 14:37

Pro-Russian Hackers Target European Air Traffic Control

Related tags
- ❌
- headline,hacker,russia,terror
April 24^th 2023 at 14:37

The Hacker News
Russian Hackers Tomiris Targeting Central Asia for Intelligence Gathering
April 24^th 2023 at 14:00

Russian Hackers Tomiris Targeting Central Asia for Intelligence Gathering

By Ravie Lakshmanan

The Russian-speaking threat actor behind a backdoor known as Tomiris is primarily focused on gathering intelligence in Central Asia, fresh findings from Kaspersky reveal. "Tomiris's endgame consistently appears to be the regular theft of internal documents," security researchers Pierre Delcher and Ivan Kwiatkowski said in an analysis published today. "The threat actor targets government and

Related tags
April 24^th 2023 at 14:00

The Hacker News
Google TAG Warns of Russian Hackers Conducting Phishing Attacks in Ukraine
April 19^th 2023 at 15:41

Google TAG Warns of Russian Hackers Conducting Phishing Attacks in Ukraine

By Ravie Lakshmanan

Elite hackers associated with Russia's military intelligence service have been linked to large-volume phishing campaigns aimed at hundreds of users in Ukraine to extract intelligence and influence public discourse related to the war. Google's Threat Analysis Group (TAG), which is monitoring the activities of the actor under the name FROZENLAKE, said the attacks continue the "group's 2022 focus

Related tags
April 19^th 2023 at 15:41

News ≈ Packet Storm
Russian Snoops Just Love Invading Unpatched Cisco Gear, America And UK Warn
April 19^th 2023 at 12:57

Russian Snoops Just Love Invading Unpatched Cisco Gear, America And UK Warn

Related tags
- ❌
- headline,government,usa,britain,russia,flaw,cisco,spyware
April 19^th 2023 at 12:57

News ≈ Packet Storm
Four Charged With Pushing Pro-Kremlin Disinfo, Election Interference
April 19^th 2023 at 12:57

Four Charged With Pushing Pro-Kremlin Disinfo, Election Interference

Related tags
- ❌
- headline,government,usa,russia,fraud
April 19^th 2023 at 12:57

The Hacker News
Russia-Linked Hackers Launches Espionage Attacks on Foreign Diplomatic Entities
April 14^th 2023 at 12:57

Russia-Linked Hackers Launches Espionage Attacks on Foreign Diplomatic Entities

By Ravie Lakshmanan

The Russia-linked APT29 (aka Cozy Bear) threat actor has been attributed to an ongoing cyber espionage campaign targeting foreign ministries and diplomatic entities located in NATO member states, the European Union, and Africa. According to Poland's Military Counterintelligence Service and the CERT Polska team, the observed activity shares tactical overlaps with a cluster tracked by Microsoft as

Related tags
April 14^th 2023 at 12:57

News ≈ Packet Storm
Pro-Russia Cyber Gang Winter Vivern Puts US, Euro Lawmakers In Line Of Fire
March 31^st 2023 at 14:48

Pro-Russia Cyber Gang Winter Vivern Puts US, Euro Lawmakers In Line Of Fire

Related tags
- ❌
- headline,hacker,government,usa,russia,cyberwar,phish,military
March 31^st 2023 at 14:48

News ≈ Packet Storm
Secret Trove Offers Rare Look Into Russian Cyberwar Ambitions
March 30^th 2023 at 19:54

Secret Trove Offers Rare Look Into Russian Cyberwar Ambitions

Related tags
- ❌
- headline,hacker,government,russia,cyberwar
March 30^th 2023 at 19:54

News ≈ Packet Storm
Pro-Russian Hackers Target Elected US Officials Supporting Ukraine
March 30^th 2023 at 14:40

Pro-Russian Hackers Target Elected US Officials Supporting Ukraine

Related tags
- ❌
- headline,hacker,government,usa,russia,cyberwar
March 30^th 2023 at 14:40

News ≈ Packet Storm
Report: Wartime Hacking Is Spilling Into The Financial Sector
March 22^nd 2023 at 15:06

Report: Wartime Hacking Is Spilling Into The Financial Sector

Related tags
March 22^nd 2023 at 15:06

News ≈ Packet Storm
Unknown Actors Deploy Malware To Steal Data In Occupied Regions Of Ukraine
March 22^nd 2023 at 15:05

Unknown Actors Deploy Malware To Steal Data In Occupied Regions Of Ukraine

Related tags
- ❌
- headline,hacker,government,malware,russia,cyberwar,military,ukraine
March 22^nd 2023 at 15:05

News ≈ Packet Storm
Xi, Putin, Declare Intent To Rule The World Of AI, Infosec
March 22^nd 2023 at 15:05

Xi, Putin, Declare Intent To Rule The World Of AI, Infosec

Related tags
- ❌
- headline,government,russia,china,cyberwar,science
March 22^nd 2023 at 15:05

News ≈ Packet Storm
U.S. Releases Footage Of Drone Crash With Russian Jet Over Black Sea
March 16^th 2023 at 14:26

U.S. Releases Footage Of Drone Crash With Russian Jet Over Black Sea

Related tags
- ❌
- headline,government,usa,russia,military
March 16^th 2023 at 14:26

News ≈ Packet Storm
The Sketchy Plan To Build A Russian Android Phone
March 6^th 2023 at 14:43

The Sketchy Plan To Build A Russian Android Phone

Related tags
- ❌
- headline,government,malware,phone,russia,google,spyware,backdoor
March 6^th 2023 at 14:43

News ≈ Packet Storm
Russian Charged With Smuggling US Counterintel Tech
February 27^th 2023 at 14:37

Russian Charged With Smuggling US Counterintel Tech

Related tags
- ❌
- headline,government,russia,cybercrime,fraud,spyware
February 27^th 2023 at 14:37

News ≈ Packet Storm
Ukraine Invasion Blew Up Russian Cybercrime Alliances
February 24^th 2023 at 20:41

Ukraine Invasion Blew Up Russian Cybercrime Alliances

Related tags
- ❌
- headline,hacker,government,malware,russia,cybercrime,fraud,cyberwar,military
February 24^th 2023 at 20:41

News ≈ Packet Storm
Russian Authorities Claim Ukraine Hackers Are Behind Fake Missile Strike Alerts
February 23^rd 2023 at 16:22

Russian Authorities Claim Ukraine Hackers Are Behind Fake Missile Strike Alerts

Related tags
- ❌
- headline,hacker,government,russia,cyberwar,military
February 23^rd 2023 at 16:22

News ≈ Packet Storm
Ukraine Suffered More Data-Wiping Malware Than Anywhere, Ever
February 23^rd 2023 at 16:22

Ukraine Suffered More Data-Wiping Malware Than Anywhere, Ever

Related tags
February 23^rd 2023 at 16:22

The Hacker News
Google Reveals Alarming Surge in Russian Cyber Attacks Against Ukraine
February 20^th 2023 at 10:54

Google Reveals Alarming Surge in Russian Cyber Attacks Against Ukraine

By Ravie Lakshmanan

Russia's cyber attacks against Ukraine surged by 250% in 2022 when compared to two years ago, Google's Threat Analysis Group (TAG) and Mandiant disclosed in a new joint report. The targeting, which coincided and has since persisted following the country's military invasion of Ukraine in February 2022, focused heavily on the Ukrainian government and military entities, alongside critical

Related tags
February 20^th 2023 at 10:54

News ≈ Packet Storm
U.S., Britain Impose Sanctions On Russia's Trickbot Hacking Gang
February 9^th 2023 at 16:13

U.S., Britain Impose Sanctions On Russia's Trickbot Hacking Gang

Related tags
- ❌
- headline,hacker,government,malware,usa,britain,russia,cyberwar
February 9^th 2023 at 16:13

News ≈ Packet Storm
Mysterious Russian Satellites Are Now Breaking Apart In Low Earth Orbit
February 8^th 2023 at 15:55

Mysterious Russian Satellites Are Now Breaking Apart In Low Earth Orbit

Related tags
- ❌
- headline,government,russia,space
February 8^th 2023 at 15:55

The Hacker News
Russian Hackers Using Graphiron Malware to Steal Data from Ukraine
February 8^th 2023 at 11:04

Russian Hackers Using Graphiron Malware to Steal Data from Ukraine

By Ravie Lakshmanan

A Russia-linked threat actor has been observed deploying a new information-stealing malware in cyber attacks targeting Ukraine. Dubbed Graphiron by Broadcom-owned Symantec, the malware is the handiwork of an espionage group known as Nodaria, which is tracked by the Computer Emergency Response Team of Ukraine (CERT-UA) as UAC-0056. "The malware is written in Go and is designed to harvest a wide

Related tags
February 8^th 2023 at 11:04

The Hacker News
Russian Hacker Pleads Guilty to Money Laundering Linked to Ryuk Ransomware
February 8^th 2023 at 09:39

Russian Hacker Pleads Guilty to Money Laundering Linked to Ryuk Ransomware

By Ravie Lakshmanan

A Russian national on February 7, 2023, pleaded guilty in the U.S. to money laundering charges and for attempting to conceal the source of funds obtained in connection with Ryuk ransomware attacks. Denis Mihaqlovic Dubnikov, 30, was arrested in Amsterdam in November 2021 before he was extradited from the Netherlands in August 2022. He is awaiting sentencing on April 11, 2023. "Between at least

Related tags
February 8^th 2023 at 09:39

The Hacker News
CERT-UA Alerts Ukrainian State Authorities of Remcos Software-Fueled Cyber Attacks
February 8^th 2023 at 06:16

CERT-UA Alerts Ukrainian State Authorities of Remcos Software-Fueled Cyber Attacks

By Ravie Lakshmanan

The Computer Emergency Response Team of Ukraine (CERT-UA) has issued an alert warning of cyber attacks against state authorities in the country that deploy a legitimate remote access software named Remcos. The mass phishing campaign has been attributed to a threat actor it tracks as UAC-0050, with the agency describing the activity as likely motivated by espionage given the toolset employed. The

Related tags
February 8^th 2023 at 06:16

News ≈ Packet Storm
Here's A List Of Proxy IPs To Help Block KillNet's DDoS Bots
February 7^th 2023 at 16:29

Here's A List Of Proxy IPs To Help Block KillNet's DDoS Bots

Related tags
February 7^th 2023 at 16:29

The Hacker News
New Russian-Backed Gamaredon's Spyware Variants Targeting Ukrainian Authorities
February 2^nd 2023 at 12:43

New Russian-Backed Gamaredon's Spyware Variants Targeting Ukrainian Authorities

By Ravie Lakshmanan

The State Cyber Protection Centre (SCPC) of Ukraine has called out the Russian state-sponsored threat actor known as Gamaredon for its targeted cyber attacks on public authorities and critical information infrastructure in the country. The advanced persistent threat, also known as Actinium, Armageddon, Iron Tilden, Primitive Bear, Shuckworm, Trident Ursa, and UAC-0010, has a track record of

Related tags
February 2^nd 2023 at 12:43

News ≈ Packet Storm
Russian Hackers DDoS Germany For Aiding Ukraine
January 30^th 2023 at 16:14

Russian Hackers DDoS Germany For Aiding Ukraine

Related tags
January 30^th 2023 at 16:14

News ≈ Packet Storm
Russian Hackers Launch Attack On Germany In Leopard Retaliation
January 27^th 2023 at 14:56

Russian Hackers Launch Attack On Germany In Leopard Retaliation

Related tags
- ❌
- headline,government,russia,cyberwar,germany,military
January 27^th 2023 at 14:56

News ≈ Packet Storm
Bitzlato Crypto Founder Charged With $700m Financial Crimes
January 19^th 2023 at 15:44

Bitzlato Crypto Founder Charged With $700m Financial Crimes

Related tags
- ❌
- headline,government,usa,russia,cybercrime,fraud,cryptography
January 19^th 2023 at 15:44

News ≈ Packet Storm
Russian Hackers Targeted US Nuclear Research Labs
January 9^th 2023 at 13:40

Russian Hackers Targeted US Nuclear Research Labs

Related tags
- ❌
- headline,usa,russia,cyberwar,military
January 9^th 2023 at 13:40

The Hacker News
Russian Turla Hackers Hijack Decade-Old Malware Infrastructure to Deploy New Backdoors
January 8^th 2023 at 06:15

Russian Turla Hackers Hijack Decade-Old Malware Infrastructure to Deploy New Backdoors

By Ravie Lakshmanan

The Russian cyberespionage group known as Turla has been observed piggybacking on attack infrastructure used by a decade-old malware to deliver its own reconnaissance and backdoor tools to targets in Ukraine. Google-owned Mandiant, which is tracking the operation under the uncategorized cluster moniker UNC4210, said the hijacked servers correspond to a variant of a commodity malware called

Related tags
January 8^th 2023 at 06:15

News ≈ Packet Storm
Russia Launches Massive Missile Strike Against Ukraine
December 29^th 2022 at 13:57

Russia Launches Massive Missile Strike Against Ukraine

Related tags
- ❌
- headline,russia,military
December 29^th 2022 at 13:57

News ≈ Packet Storm
Apple Accused Of Censoring Apps In Hong Kong And Russia
December 22^nd 2022 at 12:54

Apple Accused Of Censoring Apps In Hong Kong And Russia

Related tags
- ❌
- headline,government,phone,russia,china,apple,censorship
December 22^nd 2022 at 12:54

News ≈ Packet Storm
Kremlin-Backed Hackers Targeted A Large Petroleum Refinery
December 22^nd 2022 at 02:06

Kremlin-Backed Hackers Targeted A Large Petroleum Refinery

Related tags
- ❌
- headline,hacker,government,russia,cyberwar
December 22^nd 2022 at 02:06

The Hacker News
Ukraine's DELTA Military System Users Under Attack from Info Stealing Malware
December 21^st 2022 at 07:12

Ukraine's DELTA Military System Users Under Attack from Info Stealing Malware

By Ravie Lakshmanan

The Computer Emergency Response Team of Ukraine (CERT-UA) this week disclosed that users of the Delta situational awareness program received phishing emails from a compromised email account belonging to the Ministry of Defense. The attacks, which have been attributed to a threat cluster dubbed UAC-0142, aimed to infect systems with two pieces of data-stealing malware referred to as FateGrab and

Related tags
December 21^st 2022 at 07:12

The Hacker News
Russian Hackers Targeted Petroleum Refinery in NATO Country During Ukraine War
December 20^th 2022 at 12:55

Russian Hackers Targeted Petroleum Refinery in NATO Country During Ukraine War

By Ravie Lakshmanan

The Russia-linked Gamaredon group attempted to unsuccessfully break into a large petroleum refining company within a NATO member state earlier this year amid the ongoing Russo-Ukrainian war. The attack, which took place on August 30, 2022, is just one of multiple intrusions orchestrated by the advanced persistent threat (APT) that's attributed to Russia's Federal Security Service (FSB).

Related tags
December 20^th 2022 at 12:55

The Hacker News
Trojanized Windows 10 Installer Used in Cyberattacks Against Ukrainian Government Entities
December 16^th 2022 at 14:00

Trojanized Windows 10 Installer Used in Cyberattacks Against Ukrainian Government Entities

By Ravie Lakshmanan

Government entities in Ukraine have been breached as part of a new campaign that leveraged trojanized versions of Windows 10 installer files to conduct post-exploitation activities. Mandiant, which discovered the "socially engineered supply chain" attack around mid-July 2022, said the malicious ISO files were distributed via Ukrainian- and Russian-language Torrent websites. It's tracking the

Related tags
December 16^th 2022 at 14:00

News ≈ Packet Storm
Russian State-Owned Bank VTB Hit By Massive DDoS Attack
December 6^th 2022 at 15:58

Russian State-Owned Bank VTB Hit By Massive DDoS Attack

Related tags
December 6^th 2022 at 15:58

News ≈ Packet Storm
New Malware Is Nuking Data In Russian Courts
December 3^rd 2022 at 14:27

New Malware Is Nuking Data In Russian Courts

Related tags
December 3^rd 2022 at 14:27

The Hacker News
Russia-based RansomBoggs Ransomware Targeted Several Ukrainian Organizations
November 26^th 2022 at 04:28

Russia-based RansomBoggs Ransomware Targeted Several Ukrainian Organizations

By Ravie Lakshmanan

Ukraine has come under a fresh onslaught of ransomware attacks that mirror previous intrusions attributed to the Russia-based Sandworm nation-state group. Slovak cybersecurity company ESET, which dubbed the new ransomware strain RansomBoggs, said the attacks against several Ukrainian entities were first detected on November 21, 2022. "While the malware written in .NET is new, its deployment is

Related tags
November 26^th 2022 at 04:28

News ≈ Packet Storm
European Parliament Putin Things Back Together After Cyber Attack
November 24^th 2022 at 14:06

European Parliament Putin Things Back Together After Cyber Attack

Related tags
November 24^th 2022 at 14:06

The Hacker News
Google Wins Lawsuit Against Russians Linked to Blockchain-based Glupteba Botnet
November 21^st 2022 at 10:02

Google Wins Lawsuit Against Russians Linked to Blockchain-based Glupteba Botnet

By Ravie Lakshmanan

Google has won a lawsuit filed against two Russian nationals in connection with the operation of a botnet called Glupteba, the company said last week. The U.S. District Court for the Southern District of New York imposed monetary sanctions against the defendants and their U.S.-based legal counsel. The defendants have also been asked to pay Google's attorney fees. The defendants' move to press

Related tags
November 21^st 2022 at 10:02

News ≈ Packet Storm
Russian Hackers Are Publishing Stolen Abortion Records
November 11^th 2022 at 13:09

Russian Hackers Are Publishing Stolen Abortion Records

Related tags
November 11^th 2022 at 13:09

News ≈ Packet Storm
Microsoft Links Russia's Military To Hacks In Poland And Ukraine
November 11^th 2022 at 13:09

Microsoft Links Russia's Military To Hacks In Poland And Ukraine

Related tags
- ❌
- headline,hacker,government,microsoft,russia,cyberwar,military
November 11^th 2022 at 13:09

The Hacker News
APT29 Exploited a Windows Feature to Compromise European Diplomatic Entity Network
November 9^th 2022 at 13:47

APT29 Exploited a Windows Feature to Compromise European Diplomatic Entity Network

By Ravie Lakshmanan

The Russia-linked APT29 nation-state actor has been found leveraging a "lesser-known" Windows feature called Credential Roaming following a successful phishing attack against an unnamed European diplomatic entity. "The diplomatic-centric targeting is consistent with Russian strategic priorities as well as historic APT29 targeting," Mandiant researcher Thibault Van Geluwe de Berlaere said in a

Related tags
November 9^th 2022 at 13:47

News ≈ Packet Storm
FBI: Russian Hacktivists Achieve Only Limited DDoS Success
November 8^th 2022 at 13:36

FBI: Russian Hacktivists Achieve Only Limited DDoS Success

Related tags
November 8^th 2022 at 13:36