Illustration by Alex Castro / The Verge A Russian hacking group known as Fancy Bear targeted the emails of Democratic state parties in Indiana and California earlier this year as well as progressive think tanks, Reuters reported. The attempts were apparently not successful and were flagged by Microsoft, according to Reuters, with targets that included the Council on Foreign Relations, the Carnegie Endowment for International Peace, and the Center for American Progress. The Russian embassy denied the allegations to Reuters, calling it “fake news.” Fancy Bear has been connected to GRU, a Russian military intelligence agency, and in 2018, the Department of Justice indicted 12 members of GRU for hacking the Clinton campaign and the DNC. Fancy Bear was previously linked to the... Continue reading…
New clues indicate that APT28 may be behind mysterious intrusion disclosed last week.
New clues indicate that APT28 may be behind a mysterious intrusion that US officials disclosed last week.
Plus: Ransomware holds up schools, Zoom adds two-factor, and more of the week's top security news.
Russia's most notorious hacking group is using new techniques to breach accounts.
UK political parties probed, too, reckons Redmond as it wades into debate with call for extra election security funding Microsoft believes there have been extensive “cyberattacks targeting people and organizations involved in the upcoming presidential election,” and that foreign government hackers responsible for attacks ahead of the 2016 vote are back with new and nastier tactics.…
Microsoft says the GRU hacking group has attacked hundreds of organizations over the past year, many of them tied to the upcoming election.
Facing looming election threats and a ransomware epidemic, the bureau says it has revamped its process for warning hacking victims.
Plus: TikTok tracking, Russian SIMs, and more of this week's top security news.
From Russia, with love The NSA and FBI are sounding the alarm over a dangerous new strain of Linux malware being employed by Russian government hackers often dubbed the Fancy Bear crew.…
Drovorub is currently being deployed online by the Russian government hacking group Fancy Bear.
Twitter hack details, a botnet vigilante, and more of the week's top security news.
A previously unreported Fancy Bear campaign persisted for well over a year.
A previously unreported Fancy Bear campaign persisted for well over a year—and indicates that the notorious group has broadened its focus.
This week saw the cybersecurity world taking big strides against some of the world's most aggressive hackers.In a dramatic and potentially precedent-setting move, WhatsApp, the Facebook-owned messaging platform, sued the Israeli surveillance contractor NSO Group for allegedly targeting 1,400 of WhatsApp's users with malicious phone calls crafted to infect devices with data-grabbing malware.Meanwhile, over in United States Congress, lawmakers are still struggling to deal with increasingly ubiquitous ransomware attacks that often target vulnerable organizations like local governments and hospitals.Microsoft reported findings that the Russian hacking group Fancy Bear (also called APT28 or Strontium) has targeted at least 16 antidoping agencies around the world in the lead-up to the 2020 Tokyo Olympics.Russian hackers have barraged the Olympics for three years now, including a particularly stealthy and insidious digital attack on the Pyeongchang Winter Games in 2018.We detailed how to keep your smart-assistant devices locked down so human reviewers at big tech companies don't end up listening to audio snippets of your voice, or other accidental recordings taken in your home. Bear has started pointing anti-doping specialists and sporting establishments ahead of the Olympic 2020 Games. 
As the world prepares for the Tokyo Summer Games in 2020, Microsoft has announced that it has tracked significant cyberattacks targeting anti-doping authorities and global sporting organizations from a hacker group known as Fancy Bear or Strontium.In a blog post, the software giant revealed that the Microsoft Threat Intelligence Center has been carefully following the activity of the group which also goes by the name APT28.According to Microsoft, at least 16 national and international sporting and anti-doping organizations across three continents were targeted in this latest round of cyberattacks which began on September 16.The attacks themselves occurred just before the news broke that the World Anti-Doping Agency was planning on taking further action ahead of next year's Summer Olympics.While some of the attacks were successful, Microsoft has said that the majority were not and the company has notified all of the customers targeted in these attacks.Strontium or Fancy Bear if you prefer, is one of the world's oldest cyber espionage groups and it has also been called Sofancy and Pawn Storm by a number of security firms and government officials.
This according to the team at Microsoft, who have long been tracking the group also known as APT28 or Strontium.Redmond says that the attacks began in mid-September on the eve of new reports that the World Anti-Doping Agency (WADA) had found Russia's main sport testing labs to be missing key databases chronicling the outcome of tests on Russian athletes."At least 16 national and international sporting and anti-doping organizations across three continents were targeted in these attacks which began September 16," Microsoft corporate VP of customer security and trust Tom Burt explained."Some of these attacks were successful, but the majority were not.Microsoft has notified all customers targeted in these attacks and has worked with those who have sought our help to secure compromised accounts or systems."Redmond notes that this isn't the first time the Fancy Bear crew has taken aim at anti-doping groups.
The Fancy Bear is back on the prowl.Microsoft said the Russian state-backed hacking group has targeted at least 16 national and international sporting and anti-doping organizations ahead of the 2020 Summer Olympics in Tokyo.The campaigns mounted by the threat actor — also known by a variety of monikers like APT28, Sofacy, and Strontium — is said to have started on September 16, shortly before reports emerged about possible action by the World Anti-Doping Agency (WADA) against Russian athletes.The Windows maker said the attacks involved the use of spearphishing, brute force password spraying, exploiting internet-connected devices, and the use of both open-source and custom malware.The company hasn’t divulged the exact specifics of the attack or the group’s motivation behind them, but stated it notified all the targeted customers and that it worked with those who sought its help to secure compromised accounts.“Some of these attacks were successful, but the majority were not,” Microsoft‘s Tom Burt said.
Fancy Bear, the Russian-sponsored hacker group, recently conducted “significant cyberattacks” on 16 national and international sports and anti-doping organizations, and at least some of the offensives were successful, Microsoft said on Monday.The attacks began on September 16, just days ahead of news reports that the World Anti-Doping Agency, often known as WADA, had opened proceedings against Russian athletes after finding inconsistencies in lab data.US athletes’ doping tests published by Russian hackers, agency saysThe attacks are only the latest brazen steps the group has taken to shield against or retaliate for allegations of cheating by Russian Olympic athletes.In 2016, WADA blamed Fancy Bear for a hack that stole confidential medical data.Two years later, hackers WADA identified as Fancy Bear published private emails taken from the International Olympic Committee.