Experts Comments: Sophisticated Russian Hacking Group Is back In Action Again

A Russian cyberespionage operation which was one of the groups which hacked into Democratic National Committee in the run-up to the 2016 US Presidential election has been busy with attacks against government departments across Europe and beyond.

The Cozy Bear hacking group – also known as APT29 – is believed to be associated with the Russian intelligence service and, alongside Russian military hacking group Fancy Bear, was involved in a number of high profile attacks between 2014 and 2017.

In the time since then, Cozy Bear appeared to go quiet, but now cybersecurity analysts at ESET have detailed how the group – which they refer to as Dukes – have continued their activity while attempting to staying under the radar.

The newly uncovered campaign – dubbed Operation Ghost by researchers – started in 2013 and continued into 2019, meaning the group never stopped its espionage activity, ZDNet reported.


EXPERTS COMMENTS
Tarik Saleh, Senior Security Engineer and Malware Researcher,  DomainTools
October 21, 2019
APT groups mission statements and goals rarely change because they’ve been caught.
There can be a misunderstanding in the security intelligence world that once a threat actor or group has been attributed that they halt their activities. APT groups mission statements and goals rarely change because they’ve been caught. A more realistic response are these APT groups destroy their infrastructure and malicious code that was exposed. Often times the techniques they used can no lon ....
[Read More >>]
Richard Bejtlich , Principal Security Strategist,  Corelight
October 17, 2019
Cozy Bear appeared to go quiet.
A Russian cyberespionage operation which was one of the groups which hacked into Democratic National Committee in the run-up to the 2016 US Presidential election has been busy with attacks against government departments across Europe and beyond. The Cozy Bear hacking group – also known as APT29 – is believed to be associated with the Russian intelligence service and, alongside Russian militar ....
[Read More >>]

If you are an expert on this topic:

Submit Your Expert Comments


In this article