Skip to main content

Russia's Cozy Bear dives into cloud environments with a new bag of tricks

posted onFebruary 27, 2024
by l33tdawg
Flickr
Credit: Flickr

Russia's notorious Cozy Bear, the crew behind the SolarWinds supply chain attack, has expanded its targets and evolved its techniques to break into organizations' cloud environments, according to the Five Eyes governments.

Cozy Bear, also known as APT29 and Midnight Blizzard, is a cyber espionage group linked to the Russian Foreign Intelligence Service (SVR). It's perhaps best known for backdooring SolarWinds' network monitoring software and then using that access to spy on the vendor's customers – including the US Treasury, Justice and Energy departments, and the Pentagon.

Microsoft was also among the high-profile victims that came to light in late 2020 and early 2021. Much more recently – just last month – Redmond disclosed that these same spies broke into some Microsoft corporate email accounts and stole stole internal messages and files.

Source

Tags

Industry News

You May Also Like

Recent News

Tuesday, November 19th

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th