RUSSIA – TheCyberThrone

Secret Blizzard campaigns with ApolloShadow Malware

Secret Blizzard is a Russian state-backed hacking group (also known as Turla, Venomous Bear, or Uroburos) that recently launched a sophisticated cyberespionage campaign using a custom malware called ApolloShadow. The…

PravinKarthik August 2, 2025

Operation CargoTalon hits Russia

Overview: Operation CargoTalon is a cyber-espionage campaign identified in July 2025, targeting Russia’s aerospace and defense sectors. Unlike a conventional military operation, CargoTalon is a digital attack aimed at stealthily…

PravinKarthik July 26, 2025

Silent Cryptominer Campaign targeting Russia

The SilentCryptoMiner campaign is a sophisticated and large-scale cryptocurrency mining operation that has recently targeted over 2,000 users in Russia. This campaign leverages advanced social engineering tactics and malware distribution…

PravinKarthik March 10, 2025

APT29 compromised Mongolia with NSO and Intellexa tools

Google’s Threat Analysis Group has uncovered that Russian government-backed APT29 hackers targetting Mongolian government websites using exploits strikingly similar to those developed by commercial spyware companies Intellexa and NSO Group…

PravinKarthik August 31, 2024

CloudSorcerer APT Group Detailed Out

Security researchers have detailed about a new advanced persistent threat group that’s targeting Russian government entities in geopolitical-linked hacking campaign. The APT dubbed as CloudSorcerer, uses a sophisticated cyber espionage…

PravinKarthik July 12, 2024

Kaspersky prohibited ! Executives Sanctioned

The U.S. Treasury Department sanctioned 12 executives at Kaspersky Lab. The sanctions are being rolled out by the Treasury Department’s Office of Foreign Assets Control, or OFAC. A day earlier,…

PravinKarthik June 22, 2024

Russia Rosgosstrakh Data Breach

A cybersecurity incident targeted Rosgosstrakh (Росгосстрах), Russia’s second-largest insurance company after SOGAZ, successfully exfiltrated a substantial amount of customer and sensitive financial data. The individual goes by Apathy has announced…

PravinKarthik November 4, 2023

Gamaredon back with latest TTP

Ukraine’s CERT-UA is warning that the Russia-linked APT group Gamaredon used to steal data from victims’ networks in less than an hour after the initial compromise. The Gamaredon APT group active since 2014, continues to…

PravinKarthik July 17, 2023