French Cyber Company Warns of APT28 Hacks In opposition to Suppose Tanks


Cyberwarfare / Nation-State Attacks
,
Fraud Management & Cybercrime

Report: North Korean, Russian, Chinese language, Iranian Actors Are Concentrating on Analysis Orgs

French Cyber Agency Warns of APT28 Hacks Against Think Tanks
Russian state hackers are targeting Western think tanks, warned the French cyber defense agency. (Image: Shutterstock)

Russian state hackers who are part of Moscow intelligence gathering operations are targeting think tanks studying strategic interests and the defense sector, warned the French cyber agency.

See Also: Webinar | 2024 Phishing Insights: What 11.9 Million User Behaviors Reveal About Your Risk

In a Tuesday report evaluating threats to world suppose tanks, the French Nationwide Company for Data Methods Safety said nation-state actors tied to North Korea, Russia, China and Iran are the highest threats to analysis organizations worldwide.

Though cyberattacks have been ongoing for years, Western suppose tanks specializing in protection and worldwide relations have witnessed an inflow of assaults, particularly tied to Russian state hackers, following the Kremlin’s invasion of Ukraine in February 2022, ANSSI stated.

“Within the context of rising tensions between Russia and NATO member nations, this sector represents a relentless curiosity for attackers in search of strategic info on geopolitical and protection points,” the report says, including that the assaults are a part of Russia’s army espionage campaigns.

A hacking group that formally is Unit 26165 of the Russian Primary Intelligence Directorate – and tracked variously as APT28, Forest Blizzard and Fancy Bear – seems to be Russia’s most prolific targeter of suppose tanks.

Victims embody a number of French researchers, in addition to an unidentified French strategic institute that weathered phishing assaults that meant to steal delicate worker particulars, ANSSI stated.

Also called Pawn Storm, the group is understood for advanced operations that steal victims’ credentials to allow surveillance or intrusion operations.

The German Federal Workplace for Data Safety earlier this month disclosed an investigation into an obvious APT28 hacking marketing campaign that used a site mimicking the Kiel Institute for the World Financial system, a German suppose tank (see: German Cyber Agency Investigating APT28 Phishing Campaign).

“The case underlines that NGOs and scientific establishments are potential targets for cyberattacks. We’re taking this risk critically, and are in common contact with the authorities,” a Kiel Institute spokesperson informed Data Safety Media Group.

“Russian cyber operations are deeply intertwined with its broader international coverage targets,” stated Eugenio Benincasa, a cybersecurity researcher at ETH Zurich. He stated Moscow’s espionage actions are a part of its “hybrid warfare” method that blends cyber techniques with political interference, financial stress, and army threats.

“By using these low-cost, high-impact strategies, Russia goals to exert affect, form public opinion and destabilize key NATO and EU member states supporting Ukraine,” Benincasa stated.





Source link

Leave a Reply

Your email address will not be published. Required fields are marked *