This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-05-11T07:10:48+00:00 www.secnews.physaphae.fr Security Affairs - Blog Secu Russia-linked APT29 cyberespionage group exploited a Windows feature called Credential Roaming to target a European diplomatic entity. Mandiant researchers in early 2022 responded to an incident where the Russia-linked APT29 group (aka SVR group, Cozy Bear, Nobelium, and The Dukes) successfully phished a European diplomatic entity. The attack stands out for the use of the Windows Credential […] ]]> 2022-11-10T10:41:13+00:00 https://securityaffairs.co/wordpress/138322/apt/apt29-windows-credential-roaming.html www.secnews.physaphae.fr/article.php?IdArticle=7923274 False None APT 29 None Security Affairs - Blog Secu Russia-linked APT group Nobelium is behind a new sophisticated post-exploitation malware tracked by Microsoft as MagicWeb. Microsoft security researchers discovered a post-compromise malware, tracked as MagicWeb, which is used by the Russia-linked NOBELIUM APT group to maintain persistent access to compromised environments.  The NOBELIUM APT (APT29, Cozy Bear, and The Dukes) is the threat actor that […] ]]> 2022-08-25T17:11:38+00:00 https://securityaffairs.co/wordpress/134838/apt/nobelium-magicweb-tool.html www.secnews.physaphae.fr/article.php?IdArticle=6524118 False Malware,Threat APT 29 None Security Affairs - Blog Secu Russia-linked APT group Cozy Bear continues to target Microsoft 365 accounts in NATO countries for cyberespionage purposes. Mandiant researchers reported that the Russia-linked Cozy Bear cyberespionage group (aka APT29, CozyDuke, and Nobelium), has targeted Microsoft 365 accounts in espionage campaigns. The experts pointed out that APT29 devised new advanced tactics, techniques, and procedures to evade detection. […] ]]> 2022-08-19T23:20:33+00:00 https://securityaffairs.co/wordpress/134609/apt/cozy-bear-targets-microsoft-365-users.html www.secnews.physaphae.fr/article.php?IdArticle=6422306 False None APT 29 None Security Affairs - Blog Secu Russia-linked threat actors APT29 are using the Google Drive cloud storage service to evade detection. Palo Alto Networks researchers reported that the Russia-linked APT29 group, tracked by the researchers as Cloaked Ursa, started using the Google Drive cloud storage service to evade detection. The Russia-linked APT29 group (aka SVR, Cozy Bear, and The Dukes) has been active since at least […] ]]> 2022-07-19T13:41:49+00:00 https://securityaffairs.co/wordpress/133409/apt/apt29-google-drive-dropbox.html www.secnews.physaphae.fr/article.php?IdArticle=5825713 False Threat APT 29 None Security Affairs - Blog Secu 2022-05-02T05:34:39+00:00 https://securityaffairs.co/wordpress/130787/apt/apt29-targets-diplomats.html www.secnews.physaphae.fr/article.php?IdArticle=4531546 False None APT 29 None Security Affairs - Blog Secu 2021-12-07T07:54:37+00:00 https://securityaffairs.co/wordpress/125352/apt/nobelium-custom-malware.html?utm_source=rss&utm_medium=rss&utm_campaign=nobelium-custom-malware www.secnews.physaphae.fr/article.php?IdArticle=3755876 False Malware,Threat APT 29 None Security Affairs - Blog Secu 2021-12-06T22:31:02+00:00 https://securityaffairs.co/wordpress/125342/apt/nobelium-targets-french-orgs.html?utm_source=rss&utm_medium=rss&utm_campaign=nobelium-targets-french-orgs www.secnews.physaphae.fr/article.php?IdArticle=3754433 False None APT 29 None Security Affairs - Blog Secu 2021-10-25T11:41:33+00:00 https://securityaffairs.co/wordpress/123754/apt/nobelium-apt-it-supply-chain.html?utm_source=rss&utm_medium=rss&utm_campaign=nobelium-apt-it-supply-chain www.secnews.physaphae.fr/article.php?IdArticle=3559032 False None APT 29 None Security Affairs - Blog Secu 2021-07-31T18:00:04+00:00 https://securityaffairs.co/wordpress/120704/cyber-warfare-2/solarwinds-hackers-breached-state-attorneys-offices.html?utm_source=rss&utm_medium=rss&utm_campaign=solarwinds-hackers-breached-state-attorneys-offices www.secnews.physaphae.fr/article.php?IdArticle=3155911 False None APT 29 None Security Affairs - Blog Secu 2021-06-26T16:36:51+00:00 https://securityaffairs.co/wordpress/119425/apt/solarwinds-nobelium-ongoing-campaign.html?utm_source=rss&utm_medium=rss&utm_campaign=solarwinds-nobelium-ongoing-campaign www.secnews.physaphae.fr/article.php?IdArticle=2986501 False Threat APT 29 None Security Affairs - Blog Secu 2021-06-02T07:46:43+00:00 https://securityaffairs.co/wordpress/118495/apt/doj-seized-apt29-domains.html?utm_source=rss&utm_medium=rss&utm_campaign=doj-seized-apt29-domains www.secnews.physaphae.fr/article.php?IdArticle=2867407 False None APT 29 None Security Affairs - Blog Secu 2021-05-07T21:03:42+00:00 https://securityaffairs.co/wordpress/117667/apt/apt29-changes-ttps.html?utm_source=rss&utm_medium=rss&utm_campaign=apt29-changes-ttps www.secnews.physaphae.fr/article.php?IdArticle=2754193 False None APT 29 None Security Affairs - Blog Secu 2021-04-16T12:26:02+00:00 https://securityaffairs.co/wordpress/116891/cyber-warfare-2/russia-svr-actively-targets-5-flaws.html?utm_source=rss&utm_medium=rss&utm_campaign=russia-svr-actively-targets-5-flaws www.secnews.physaphae.fr/article.php?IdArticle=2653026 False None APT 29 None Security Affairs - Blog Secu 2021-04-15T22:20:58+00:00 https://securityaffairs.co/wordpress/116866/cyber-warfare-2/us-sanctions-russia-solarwinds.html?utm_source=rss&utm_medium=rss&utm_campaign=us-sanctions-russia-solarwinds www.secnews.physaphae.fr/article.php?IdArticle=2649643 False Hack APT 29 None Security Affairs - Blog Secu 2021-03-07T14:54:02+00:00 https://securityaffairs.co/wordpress/115360/apt/russia-apt-lithuanian-infrastructure.html?utm_source=rss&utm_medium=rss&utm_campaign=russia-apt-lithuanian-infrastructure www.secnews.physaphae.fr/article.php?IdArticle=2448286 False Threat APT 29 None Security Affairs - Blog Secu 2020-07-16T14:45:58+00:00 https://securityaffairs.co/wordpress/105992/intelligence/ncsc-apt29-covid-19-vaccine.html?utm_source=rss&utm_medium=rss&utm_campaign=ncsc-apt29-covid-19-vaccine www.secnews.physaphae.fr/article.php?IdArticle=1808154 False None APT 29 None Security Affairs - Blog Secu 2018-11-23T10:38:04+00:00 https://securityaffairs.co/wordpress/78353/apt/new-cozy-bear-campaign.html www.secnews.physaphae.fr/article.php?IdArticle=913703 False Malware APT 29 None Security Affairs - Blog Secu 2018-11-19T13:27:04+00:00 https://securityaffairs.co/wordpress/78195/apt/apt29-malware-analysis.html www.secnews.physaphae.fr/article.php?IdArticle=906670 False Malware APT 29 None Security Affairs - Blog Secu 2018-11-18T09:35:00+00:00 https://securityaffairs.co/wordpress/78161/intelligence/apt29-impersonates-state-department.html www.secnews.physaphae.fr/article.php?IdArticle=904245 False Threat APT 29 None Security Affairs - Blog Secu 2018-01-26T10:40:29+00:00 http://securityaffairs.co/wordpress/68241/intelligence/aivd-hacked-cozy-bear.html www.secnews.physaphae.fr/article.php?IdArticle=460608 False None APT 29 None