Home / Early Warning / Cybersecurity Highlights / APT28: a new threat with probable Russian origin

APT28: a new threat with probable Russian origin

FireEye has published a report in which they analyse a new APT, named APT28. The company informs that there are evidences pointing out that this new threat has Russian origin, due to its targets. Among them, there are gubernamental entities and journalists from Georgia, governments and military organizations from Eeastern European countries and military organizations like NATO and OSCE. Moreover, the analysed malware contains settings consistent with the Russian language and compilation times that match work hours in important Russian cities, like Moscow and St. Petersburg.
Researchers in FireEye have found evidence that this APT has been active since 2007 and its aimed to collect intelligence from the targeted organizations.