APT28 - Security Ticks

Incomplete Windows Patch Opens Door to Zero-Click Attacks

APT28, exploited, Russia, Vulnerabilities, vulnerability, Windows / SecurityTicks

Incomplete Windows Patch Opens Door to Zero-Click Attacks 2026-04-27 at 20:43 By Ionut Arghire The initial vulnerability was exploited by Russia-linked APT28 in attacks against Ukraine and EU countries. The post Incomplete Windows Patch Opens Door to Zero-Click Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Incomplete Windows Patch Opens Door to Zero-Click Attacks Read More »

US Disrupts Russian Espionage Operation Involving Hacked Routers and DNS Hijacking

APT, APT28, disrupted, Featured, Forest Blizzard, Government, Malware & Threats, Nation-State, Russia, takedown / SecurityTicks

US Disrupts Russian Espionage Operation Involving Hacked Routers and DNS Hijacking 2026-04-08 at 15:06 By Eduard Kovacs The APT28 threat group exploited vulnerable TP-Link and MikroTik routers to conduct adversary-in-the-middle (AitM) attacks. The post US Disrupts Russian Espionage Operation Involving Hacked Routers and DNS Hijacking appeared first on SecurityWeek. This article is an excerpt from

US Disrupts Russian Espionage Operation Involving Hacked Routers and DNS Hijacking Read More »

Russia’s APT28 Rapidly Weaponizes Newly Patched Office Vulnerability

APT, APT28, exploited, Featured, Malware & Threats, Nation-State, Office, Russia, Vulnerabilities / SecurityTicks

Russia’s APT28 Rapidly Weaponizes Newly Patched Office Vulnerability 2026-02-03 at 15:15 By Eduard Kovacs The attacks targeting Europe were analyzed by Ukraine’s CERT-UA and the cybersecurity company Zscaler. The post Russia’s APT28 Rapidly Weaponizes Newly Patched Office Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Russia’s APT28 Rapidly Weaponizes Newly Patched Office Vulnerability Read More »

Russia’s APT28 Targeting Energy Research, Defense Collaboration Entities

APT28, Government, Malware & Threats, Russia / SecurityTicks

Russia’s APT28 Targeting Energy Research, Defense Collaboration Entities 2026-01-12 at 14:39 By Ionut Arghire APT28 was seen impersonating popular webmail and VPN services, including Microsoft OWA, Google, and Sophos VPN portals. The post Russia’s APT28 Targeting Energy Research, Defense Collaboration Entities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Russia’s APT28 Targeting Energy Research, Defense Collaboration Entities Read More »

Russian APT Hits Ukrainian Government With New Malware via Signal

APT28, Malware, Malware & Threats, Nation-State, Russia, Signal, Ukraine / SecurityTicks

Russian APT Hits Ukrainian Government With New Malware via Signal 2025-06-25 at 10:17 By Ionut Arghire Russia-linked APT28 deployed new malware against Ukrainian government targets through malicious documents sent via Signal chats. The post Russian APT Hits Ukrainian Government With New Malware via Signal appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Russian APT Hits Ukrainian Government With New Malware via Signal Read More »

CISA Says Russian Hackers Targeting Western Supply-Lines to Ukraine

APT28, CISA, Malware & Threats, Nation-State, Russia, Ukraine, Unit 26165, Vulnerabilities / SecurityTicks

CISA Says Russian Hackers Targeting Western Supply-Lines to Ukraine 2025-05-21 at 23:47 By Ryan Naraine Russian military intelligence hackers intensify targeting of Western logistics and technology companies moving supplies into Ukraine. The post CISA Says Russian Hackers Targeting Western Supply-Lines to Ukraine appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

CISA Says Russian Hackers Targeting Western Supply-Lines to Ukraine Read More »

Russian APT Exploiting Mail Servers Against Government, Defense Organizations

APT28, email security, MDaemon, Russia, Zero-Day / SecurityTicks

Russian APT Exploiting Mail Servers Against Government, Defense Organizations 2025-05-16 at 13:15 By Ionut Arghire Russia-linked APT28 has been exploiting mail server vulnerabilities against government and defense entities since September 2023. The post Russian APT Exploiting Mail Servers Against Government, Defense Organizations appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Russian APT Exploiting Mail Servers Against Government, Defense Organizations Read More »

France Blames Russia for Cyberattacks on Dozen Entities

APT28, cyberespionage, France, Nation-State, Russia / SecurityTicks

France Blames Russia for Cyberattacks on Dozen Entities 2025-04-30 at 13:20 By Ionut Arghire France says the Russian state-sponsored group APT28 is responsible for targeting or compromising a dozen French entities. The post France Blames Russia for Cyberattacks on Dozen Entities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

France Blames Russia for Cyberattacks on Dozen Entities Read More »

NATO Draws a Cyber Red Line in Tensions With Russia

APT28, cyberwar, Cyberwarfare, Featured, NATO, Russia / SecurityTicks

NATO Draws a Cyber Red Line in Tensions With Russia 2024-05-13 at 17:46 By Kevin Townsend Weakening liberal democracies and weakening the NATO alliance are conjoined in the hybrid war that Russia is conducting against Ukraine. The post NATO Draws a Cyber Red Line in Tensions With Russia appeared first on SecurityWeek. This article is

NATO Draws a Cyber Red Line in Tensions With Russia Read More »

Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations

APT28, espionage, Malware, Malware & Threats, Microsoft, Nation-State, Russia / SecurityTicks

Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations 2024-04-23 at 17:16 By Ionut Arghire Russia-linked APT28 deploys the GooseEgg post-exploitation tool against numerous US and European organizations. The post Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Russian Cyberspies Deliver ‘GooseEgg’ Malware to Government Organizations Read More »

US Government Urges Cleanup of Routers Infected by Russia’s APT28

APT28, botnet, Malware & Threats, Nation-State, Russia / SecurityTicks

US Government Urges Cleanup of Routers Infected by Russia’s APT28 2024-02-28 at 14:52 By Ionut Arghire The US government says Russia’s APT28 group compromised Ubiquiti EdgeRouters to run cyberespionage operations worldwide. The post US Government Urges Cleanup of Routers Infected by Russia’s APT28 appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

US Government Urges Cleanup of Routers Infected by Russia’s APT28 Read More »

FBI Dismantles Ubiquiti Router Botnet Controlled by Russian Cyberspies

APT28, FBI, Forest Blizzard, KV Botnet, Malware & Threats, Nation-State / SecurityTicks

FBI Dismantles Ubiquiti Router Botnet Controlled by Russian Cyberspies 2024-02-15 at 21:46 By Ryan Naraine The US government says it has neutralized a network of hundreds of Ubiquiti Edge OS routers under the control of the Russia’s APT28 hackers. The post FBI Dismantles Ubiquiti Router Botnet Controlled by Russian Cyberspies appeared first on SecurityWeek. This

FBI Dismantles Ubiquiti Router Botnet Controlled by Russian Cyberspies Read More »

Russian APT Used Zero-Click Outlook Exploit

APT28, Cyberwarfare, Microsoft Outlook, Russia, Vulnerabilities / SecurityTicks

Russian APT Used Zero-Click Outlook Exploit 08/12/2023 at 18:32 By Ionut Arghire Russian threat actor APT28 has been exploiting a no-interaction Outlook vulnerability in attacks against 14 countries. The post Russian APT Used Zero-Click Outlook Exploit appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Russian APT Used Zero-Click Outlook Exploit Read More »