APT28: a new threat with probable Russian origin
FireEye has published a report in which they analyse a new APT, named APT28. The company informs that there are evidences pointing out that this new threat has Russian origin, due to its targets. Among them, there are gubernamental entities and journalists from Georgia, governments and military organizations from Eeastern European countries and military organizations like NATO and OSCE. Moreover, the analysed malware contains settings consistent with the Russian language and compilation times that match work hours in important Russian cities, like Moscow and St. Petersburg.
Researchers in FireEye have found evidence that this APT has been active since 2007 and its aimed to collect intelligence from the targeted organizations.
Researchers in FireEye have found evidence that this APT has been active since 2007 and its aimed to collect intelligence from the targeted organizations.
References:
- 27/10/2014 fireeye.com APT28: A Window into Russia’s Cyber Espionage Operations?
- 30/10/2014 thehackernews.com APT28 — State Sponsored Russian Hacker Group
Tags: