gru – Computer Security Articles

From Cybercrime Saul Goodman to the Russian GRU

February 7, 2024 admin A Little Sunshine, aleksei valerievich safronov, congressional research service, constella intelligence, djamix, DomainTools.com, gru, guardia civil, mark rasch, mazafaka, meduza, Ne'er-Do-Well News, russia's war on ukraine, stalker

Credit to Author: BrianKrebs| Date: Wed, 07 Feb 2024 17:10:18 +0000

In 2021, the exclusive Russian cybercrime forum Mazafaka was hacked. The leaked user database shows one of the forum’s founders was an attorney who advised Russia’s top hackers on the legal risks of their work, and what to do if they got caught. A review of this user’s hacker identities shows that during his time on the forums he served as an officer in the special forces of the GRU, the foreign military intelligence agency of the Russian Federation.

Independent Krebs

Russia Sends Cybersecurity CEO to Jail for 14 Years

July 26, 2023 admin evil corp., Fancy Bear, financial times, Group-IB, gru, ilya sachkov, kaspersky lab, maksim yakubets, max seddon, Ruslan Stoyanov, Sergei Mikhailov, The Coming Storm

Credit to Author: BrianKrebs| Date: Wed, 26 Jul 2023 17:29:40 +0000

The Russian government today handed down a treason conviction and 14-year prison sentence on Iyla Sachkov, the former founder and CEO of one of Russia’s largest cybersecurity firms. Sachkov, 37, has been detained for nearly two years under charges that the Kremlin has kept classified and hidden from public view, and he joins a growing roster of former Russian cybercrime fighters who are now serving hard time for farcical treason convictions.

MalwareBytes Security

Fancy Bear known to be exploiting vulnerability in Cisco routers

April 24, 2023 admin APT28, Cisco, cve--2017-6742, Exploits and vulnerabilities, Fancy Bear, gru, jaguar tooth, news, snmp, Sofacy

Categories: Exploits and vulnerabilities

Categories: News

Tags: APT28

Tags: Sofacy

Tags: Fancy Bear

Tags: GRU

Tags: Cisco

Tags: CVE–2017-6742

Tags: SNMP

Tags: Jaguar Tooth

A joint advisory about a Cisco vulnerability by several US and UK agencies gives us a peek inside the minds of ideologically motivated cybercriminals

MalwareBytes Security

Successful operations against Russian Sandworm and Strontium groups targeting Ukraine revealed

April 8, 2022 admin ASUS, botnets, cyclops blink, DoJ, gru, microsoft, NotPetya, reports, sandworm, sinkhole, Strontium, Ukraine, watchguard

Credit to Author: Pieter Arntz| Date: Fri, 08 Apr 2022 14:23:30 +0000

Two announcements in two days detail operations against GRU-controlled infrastructure

The post Successful operations against Russian Sandworm and Strontium groups targeting Ukraine revealed appeared first on Malwarebytes Labs.

Independent Krebs

Actions Target Russian Govt. Botnet, Hydra Dark Market

April 7, 2022 admin Ars Technica, ASUS, beserk bear, cyclops blink, Dan Goodin, dragonfly 2.0, FBI, federal security service, garantex, german federal criminal police office, gru, hydra market, main intelligence directorate, Ne'er-Do-Well News, NotPetya, ransomware, russian fsb, sandworm, trisis, triton, u.s. department of justice, u.s. department of treasury, voodoo bear, VPNFilter, watchguard, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 07 Apr 2022 22:03:45 +0000

The U.S. Federal Bureau of Investigation (FBI) says it has disrupted a giant botnet built and operated by a Russian government intelligence unit known for launching destructive cyberattacks against energy infrastructure in the United States and Ukraine. Separately, law enforcement agencies in the U.S. and Germany moved to decapitate “Hydra,” a billion-dollar Russian darknet drug bazaar that also helped to launder the profits of multiple Russian ransomware groups.