SEARCH
Archive
A Decade of Sandworm: Digging into APT44’s Past and Future
Decipher’s Lindsey O’Donnell-Welch and Mandiant analysts Dan Black and Gabby Roncone reflect on the most pivotal moments from Sandworm over the last decade, from NotPetya to the Ukraine electric power grid attacks.
Sandworm Group Shifts to Espionage Attacks, Hacktivist Personas
Recent activity by the well-known Sandworm group - which researchers with Mandiant have started calling APT44 - relies on a mix of espionage efforts and hacktivist personas.
Winter Vivern APT Targets Zero Day in Roundcube
The Winter Vivern APT group has been targeting a zero day XSS vulnerability in the Roundcube webmail server in recent weeks.
APT Actors Exploited Known Zoho, Fortinet Flaws to Hit Aeronautical Org
Fixes for both the Zoho and Fortinet vulnerabilities have been available since last year.
China-Based APT Flies Under Radar in Espionage Attacks
While the APT has targeted dozens of organizations in Taiwan, researchers with Microsoft warn that its tactics could easily be used in campaigns in other areas.