Cybersecurity, Privacy, & AI

Trending Now
Your AI Agent Could Become Your Biggest Insider Threat • The New Cyber Deterrent Isn’t a Weapon. It’s Cyber Recovery. • Commerce OIG Calls for Changes to NIST Vulnerability Database Management • Pentagon Looks to AI, Other Tech to Help Tackle Contested Logistics Challenges • How Defensive Cyber Responds to Hockey-Stick Growth of AI-Driven Threats
Protests & Claims Newsletter Cyber & Privacy Newsletter Compliance & Enforcement Newsletter Development Newsletter Transforming Procurement Newsletter
Published on May 5, 2022 Cyber

SolarWinds Hackers Developing New Infrastructure, Using Established Tricks

SolarWinds Hackers Developing New Infrastructure, Using Established Tricks

ozrimoz | Shutterstock

An analysis of Nobelium/APT29/CobyBear indicates that the Russian hackers responsible for the SolarWinds attack, are setting up new infrastructure for launching attacks. For example, the group has registered “typosquatting” domains to trick phishing targets into thinking they are dealing with legitimate web sites, with an emphasis on impersonating news and media organizations. The group has been trying to phish diplomats and international aid groups, with a recent focus on Ukraine and NATO targets. Last May the groups posed as the U.S. Agency for International Development using domains that the DOJ eventually seized.

Source:

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–SaturdaySubscribe here.

© PubKGroup 2024