Tag: russia

Russia-Aligned Hackers Abuse Viber to Target Ukrainian Military and Government

Jan 5, 2026 7:52 PM

Tags: government, hacker, intelligence, malicious, military, russia, threat, ukraine

The Russia-aligned threat actor known as UAC-0184 has been observed targeting Ukrainian military and government entities by leveraging the Viber messaging platform to deliver malicious ZIP archives.”This organization has continued to conduct high-intensity intelligence gathering activities against Ukrainian military and government departments in 2025,” the 360 Threat Intelligence Center said in First seen on thehackernews.com…
Hackers Steal $35M in Cryptocurrency Following LastPass Breach

Jan 5, 2026 3:52 PM

Tags: attack, blockchain, breach, crypto, cyber, cybercrime, data-breach, encryption, hacker, intelligence, password, russia

Russian cybercriminals have laundered over $35 million in stolen cryptocurrency linked to the devastating 2022 LastPass breach, according to new forensic analysis by blockchain intelligence firm TRM Labs. The 2022 attack exposed encrypted password vaults belonging to roughly 30 million customers worldwide. While the vaults were initially protected by encryption, attackers who downloaded them could…
Time to restore America’s cyberspace security system

Jan 5, 2026 12:52 PM

Tags: access, china, government, infrastructure, network, russia, tool, usa

China’s campaign to break into our critical infrastructure and federal government networks is persistent and growing. Beijing is stealing information while also planting tools and maintaining access in key systems, giving it the option to pressure the United States in the future. Russia also continues to test our critical infrastructure with increasingly sophisticated operations, support…
Finnish Authorities Arrest Two Sailors in Probe Into Undersea Cable Disruption

Jan 3, 2026 3:52 PM

Tags: cyber, infrastructure, russia, warfare

Finnish authorities have detained a cargo vessel suspected of damaging an undersea telecommunications cable connecting Helsinki to Estonia. The incident has raised fresh concerns about potential hybrid warfare targeting critical infrastructure in the Baltic Sea region. The vessel, named Fitburg, was sailing from St. Petersburg, Russia, to Haifa, Israel, flying the flag of St Vincent…
Cryptocurrency theft attacks traced to 2022 LastPass breach

Jan 2, 2026 6:52 PM

Tags: attack, blockchain, breach, crypto, russia, theft

Blockchain investigation firm TRM Labs says ongoing cryptocurrency thefts have been traced to the 2022 LastPass breach, with attackers draining wallets years after encrypted vaults were stolen and laundering the crypto through Russian exchanges. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cryptocurrency-theft-attacks-traced-to-2022-lastpass-breach/
Top 10 Cybersecurity Predictions for 2026

Jan 1, 2026 10:52 AM

Tags: access, ai, api, application-security, attack, authentication, automation, awareness, backdoor, backup, best-practice, blockchain, breach, business, ceo, china, ciso, cloud, communications, compliance, computer, computing, conference, control, corporate, crypto, cryptography, cyber, cyberattack, cybercrime, cybersecurity, data, data-breach, deep-fake, defense, detection, disinformation, email, encryption, espionage, exploit, extortion, finance, fraud, governance, government, group, hacker, hacking, healthcare, identity, incident response, infrastructure, intelligence, Internet, iran, korea, law, linkedin, LLM, malicious, malware, mfa, military, monitoring, msp, mssp, network, nist, north-korea, organized, phishing, privacy, programming, ransom, ransomware, regulation, risk, risk-management, russia, scam, service, skills, soc, social-engineering, software, strategy, supply-chain, tactics, technology, theft, threat, tool, training, ukraine, update, vulnerability, vulnerability-management, warfare, windows, zero-day

Top 10 Cybersecurity Predictions for 2026 The year AI changes cybersecurity forever Cybersecurity predictions are an opportunity to look forward instead of back, to be proactive instead of reactive, and to consider how changes in attackers, technology, and the security industry will impact the sustainability of managing cyber risks. Gaining future insights to the threats, targets,…
Finnish Police Investigating New Undersea Cable Incident

Dec 31, 2025 8:52 PM

Tags: russia

Finnish Border Guard Seize Cargo Ship Suspected of Causing Disruption. Finnish police on Wednesday seized a cargo ship sailing from Russia suspected of rupturing an undersea telecommunication cable connecting Helsinki to Estonia, a region of the Baltic Sea that is the site of a slew of suspected Russian cable sabotage incidents. First seen on govinfosecurity.com…
New Cybercrime Tool “ErrTraffic” Enables Automated ClickFix Attacks

Dec 31, 2025 6:52 PM

Tags: attack, cyber, cybercrime, russia, service, social-engineering, tool

The cybercriminal underground has entered a new phase of industrialization. Hudson Rock researchers have uncovered ErrTraffic v2, a sophisticated ClickFix-as-a-Service platform that commoditizes deceptive social engineering at an unprecedented scale. Priced at just $800 and advertised on top-tier Russian cybercrime forums, the tool represents a watershed moment in the democratization of cybercrime infrastructure. ClickFix attacks…
Discovering the Dimensions of a New Cold War

Dec 31, 2025 11:52 AM

Tags: china, russia

The United States’ plan for dealing with Putin’s Russia and Xi’s China remains ill-defined among a shifting global order. That must change. First seen on wired.com Jump to article: www.wired.com/story/discovering-the-dimensions-of-a-new-cold-war/
TDL 012 – The Architect of the Internet on the Future of Trust

Dec 27, 2025 5:55 AM

Tags: ai, apple, breach, browser, business, cctv, computing, control, credit-card, data, dns, email, google, infrastructure, intelligence, Internet, jobs, law, mail, metric, microsoft, network, privacy, radius, russia, service, spam, threat, ukraine, vulnerability

Summary In this episode of The Defenders Log, Paul Mockapetris, the architect of DNS, discusses the evolving role of the Domain Name System from a simple directory to a sophisticated security tool. He posits that modern networking requires “making sure DNS doesn’t work when you don’t want it to,” comparing DNS filtering to essential services…
LastPass 2022 Breach Led to Years-Long Cryptocurrency Thefts, TRM Labs Finds

Dec 25, 2025 2:19 PM

Tags: backup, blockchain, breach, crypto, cybercrime, data, data-breach, intelligence, password, russia, theft

The encrypted vault backups stolen from the 2022 LastPass data breach have enabled bad actors to take advantage of weak master passwords to crack them open and drain cryptocurrency assets as recently as late 2025, according to new findings from TRM Labs.The blockchain intelligence firm said evidence points to the involvement of Russian cybercriminal actors…
LastPass 2022 Breach Led to Years-Long Cryptocurrency Thefts, TRM Labs Finds

Dec 25, 2025 2:19 PM

Tags: backup, blockchain, breach, crypto, cybercrime, data, data-breach, intelligence, password, russia, theft

The encrypted vault backups stolen from the 2022 LastPass data breach have enabled bad actors to take advantage of weak master passwords to crack them open and drain cryptocurrency assets as recently as late 2025, according to new findings from TRM Labs.The blockchain intelligence firm said evidence points to the involvement of Russian cybercriminal actors…
Best of 2025: Ukraine Pwns Russian Drone Maker, Gaskar is ‘Paralyzed’

Dec 24, 2025 3:19 PM

Tags: backup, cyber, data, group, hacker, military, russia, ukraine

Ukrainian Cyber Alliance and Black Owl team up to hack manufacturer of Russian military drones, sources”¯”¯say. Gaskar Group, Russian designer of drones plaguing Ukraine’s skies, is in utter disarray. Or, at least, so says Ukrainian military intelligence. Hacker groups teamed up to steal and delete 57″¯TB of critical data and backups, preventing the company from..…
Interpol sweep takes down cybercrooks in 19 countries

Dec 24, 2025 5:19 AM

Tags: access, antivirus, attack, botnet, business, china, cyber, cyberattack, cybercrime, cybersecurity, data, defense, email, encryption, finance, fraud, group, incident response, infrastructure, intelligence, international, interpol, law, malicious, malware, microsoft, ransomware, russia, scam, service, theft, threat

A ‘very good thing’: The fact that the same operation broke ransomware operations and a business email compromise (BEC) operation is “unique,” said DiMaggio, because most people think of Africa as the source of BEC and fraud scams.The fact that authorities are working to disrupt ransomware operations in Africa before they grow to the size…
US Must Go on Offense in Cyberspace, Report Warns

Dec 22, 2025 11:19 PM

Tags: china, cyber, exploit, offense, russia, strategy

Report: China, Russia Exploiting US Cyber Policy Gaps to Gain Strategic Advantage. A new McCrary Institute report urges Washington to adopt a more offensive cyber strategy, warning that the current reactive approach leaves the U.S. unable to counter China and Russia’s persistent campaigns to gain asymmetric leverage in cyberspace. First seen on govinfosecurity.com Jump to…
Cyber spies use fake New Year concert invites to target Russian military

Dec 22, 2025 7:19 PM

Tags: cyber, cybersecurity, malicious, military, russia, ukraine

The campaign surfaced earlier in October after researchers at the New York-based cybersecurity firm Intezer identified a malicious XLL file uploaded to VirusTotal, first from Ukraine and later from Russia. First seen on therecord.media Jump to article: therecord.media/cyber-spies-fake-new-year-concert-russian-phishing
Arcane Werewolf Hacker Group Expands Arsenal with Loki 2.1 Malware Toolkit

Dec 22, 2025 3:18 PM

Tags: cyber, espionage, group, hacker, intelligence, malware, russia, threat

The cyber espionage group known as Arcane Werewolf (also tracked as Mythic Likho) has significantly upgraded its offensive capabilities, targeting Russian manufacturing enterprises with a new iteration of its custom malware. According to a report by BI.ZONE Threat Intelligence: campaigns observed in October and November 2025 reveal that the group has transitioned from the Loki…
Hackers exploit Microsoft OAuth device codes to hijack enterprise accounts

Dec 22, 2025 1:19 PM

Tags: access, attack, automation, awareness, breach, china, conference, credentials, cybercrime, data, email, espionage, exploit, finance, government, group, hacker, hacking, linkedin, malicious, microsoft, military, phishing, qr, russia, tactics, threat, tool, unauthorized

Tools of the trade: What’s driving the surge is the availability of tools that make these attacks easy to execute. Proofpoint identified two primary kits: SquarePhish2 and Graphish.SquarePhish2 is an updated version of a tool originally published by Dell Secureworks in 2022. It automates the OAuth Device Grant Authorization flow and integrates QR code functionality.The…
Hackers exploit Microsoft OAuth device codes to hijack enterprise accounts

Dec 22, 2025 1:19 PM

Tags: access, attack, automation, awareness, breach, china, conference, credentials, cybercrime, data, email, espionage, exploit, finance, government, group, hacker, hacking, linkedin, malicious, microsoft, military, phishing, qr, russia, tactics, threat, tool, unauthorized

Tools of the trade: What’s driving the surge is the availability of tools that make these attacks easy to execute. Proofpoint identified two primary kits: SquarePhish2 and Graphish.SquarePhish2 is an updated version of a tool originally published by Dell Secureworks in 2022. It automates the OAuth Device Grant Authorization flow and integrates QR code functionality.The…
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 76

Dec 21, 2025 3:19 PM

Tags: attack, browser, cyber, international, malware, ransomware, russia, tool

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter CyberVolk – A Deep Dive into the Hacktivists, Tools and Ransomware Fueling Pro-Russian Cyber Attacks Operation MoneyMount-ISO, Deploying Phantom Stealer via ISO-Mounted Executables Inside GhostPoster: How a PNG Icon Infected 50,000 Firefox Users […]…
Russia was behind a destructive cyber attack on a water utility in 2024, Denmark says

Dec 20, 2025 5:19 AM

Tags: attack, cyber, cyberattack, intelligence, russia, service

Denmark has blamed Russia for a destructive cyberattack on a water utility, calling it part of Moscow’s hybrid campaign against Western critical infrastructure. Denmark has accused Russia of orchestrating destructive cyberattacks against a water utility in 2024, framing them as part of broader hybrid attacks on Western critical infrastructure. Denmark’s Defence Intelligence Service attributed a…
BlueDelta Hackers Target Users of Popular Ukrainian Webmail and News Service

Dec 19, 2025 10:19 PM

Tags: credentials, cyber, group, hacker, russia, service, threat, ukraine

Russian state-sponsored threat group BlueDelta has conducted a sustained credential-harvesting campaign targeting users of UKR.NET, one of Ukraine’s most popular webmail and news services, between June 2024 and April 2025. According to research by Recorded Future’s Insikt Group, the operation represents a significant escalation in the GRU-linked threat actor’s efforts to compromise Ukrainian user credentials…
Mapping the Emerging Alliance Between Qilin, DragonForce, and LockBit

Dec 19, 2025 10:19 PM

Tags: cyber, group, law, lockbit, ransomware, russia

In mid-September 2025, the ransomware landscape witnessed a significant development when DragonForce announced an alliance with Qilin and LockBit on a Russian underground forum. The announcement, posted on September 15, 2025, claimed the three groups were joining forces to navigate an increasingly challenging criminal ecosystem marked by intensified law enforcement pressure and operational fragmentation. A…
Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers

Dec 19, 2025 9:19 PM

Tags: attack, authentication, credentials, email, government, group, hacker, microsoft, phishing, russia

A suspected Russia-aligned group has been attributed to a phishing campaign that employs device code authentication workflows to steal victims’ Microsoft 365 credentials and conduct account takeover attacks.The activity, ongoing since September 2025, is being tracked by Proofpoint under the moniker UNK_AcademicFlare.The attacks involve using compromised email addresses belonging to government First seen on thehackernews.com…
Denmark summons Russian ambassador over alleged cyberattacks on water utility, elections

Dec 19, 2025 7:19 PM

Tags: cyberattack, election, russia

Russia’s ambassador to Copenhagen, Vladimir Barbin, confirmed to Russian state media on Friday that he had been called to the Danish foreign ministry, but rejected the accusations as unfounded. First seen on therecord.media Jump to article: therecord.media/denmark-summons-russian-ambassador-cyberattack-elections
FireTail’s 2022 Review on Macro, Industry, and Thoughts About What’s Next FireTail Blog

Dec 19, 2025 6:19 PM

Tags: ai, api, attack, cloud, cyber, cybercrime, cybersecurity, data, exploit, finance, government, infrastructure, intelligence, Internet, jobs, office, open-source, regulation, russia, startup, strategy, technology, usa, vulnerability

Dec 19, 2025 – Jeremy Snyder – New beginnings, such as new years, provide a nice opportunity to look back at what we have just experienced, as well as look forward to what to expect. 2022 was a year of transition in many ways, and 2023 may well be the same. I wanted to reflect…
State-linked and criminal hackers use device code phishing against M365 users

Dec 19, 2025 6:19 PM

Tags: group, hacker, phishing, russia

Russia-linked groups have attacked multiple sectors in recent months. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/state-linked-criminal-hackers-device-code-phishing-m365/808396/
Denmark blames Russia for destructive cyberattack on water utility

Dec 19, 2025 2:19 PM

Tags: attack, cyberattack, infrastructure, intelligence, russia

Danish intelligence officials blamed Russia for orchestrating cyberattacks against Denmark’s critical infrastructure, as part of Moscow’s hybrid attacks against Western nations. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/denmark-blames-russia-for-destructive-cyberattack-on-water-utility/
Denmark Blames Russia for Destructive Cyber-Attacks

Dec 19, 2025 2:19 PM

Tags: attack, cyber, group, intelligence, russia, service

The Danish intelligence service believes some pro-Russian hacktivist groups have links with the Kremlin First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/denmark-blames-russia-for/
FBI Disrupts Russian Crypto Laundering Hub Enabling Cybercrime

Dec 19, 2025 10:19 AM

Tags: crypto, cybercrime, russia

A 39-year-old Russian national is accused of working with cybercriminals to convert criminal proceeds from cryptocurrency into various cash currencies First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/fbi-disrupts-russian-crypto/