Discover and read the best of Twitter Threads about #CozyBear

Most recents (8)

26/5/23 - Yoeri Albrecht is onderdeel van propaganda outlet @bellingcat. Bellingcat creëerde oa. de doofpot rondom het OPCW Douma dossier. Deze missie werd geleid door @SigridKaag #warcrimes
18/7/18 - @bellingcat is een ‘pay to play’ partner. De gedeelde informatie van Bellingcat zit vol met gefabriceerde informatie. Het hoofdkantoor van Bellingcat staat in Nederland, Amsterdam mintpressnews.com/connecting-dia… Image
26/5/23 - draadje hoe de Oekraïnes Chalupa de USA verkiezingen van 2016 verstoorde. Zou er een groep van boze elite oligarchen bestaan die de wereld besturen? Zo ja dan moeten ze beter opletten want ze zijn gezien #CLINTON #AIVD #COZYBEAR #BELLINGCAT
Read 3 tweets
Vor einem Jahr bin ich mit einer Quelle ins Gespräch gekommen, die hunderte geheime Dokumente schickte. E-Mails, Tabellen, Verträge, vor allem aber: Beschreibungen von Systemen, die für die russischen Geheimdienste entwickelt werden. Wir nennen sie #VulkanFiles Image
Die Quelle schrieb: "Die GRU und der FSB verstecken sich hinter dieser Firma". Und tatsächlich finden wir in den #VulkanFiles spuren zu den russischen Geheimdiensten, sorgar noch zu einem dritten, dem SVR. Und zum Militär.
Die #VulkanFiles sind interne Daten der IT-Firma "NTC Vulkan". Auf den ersten Blick ein harmloser IT-Dienstleister. In Wirklichkeit bauen sie Werkzeuge für die digitale Kriegsführung. Und für die berüchtigten Hacker von "Sandworm", die seit Jahren die Ukraine ins Visier nehmen
Read 7 tweets
Wanna know bout the effect on national security & global stability of #QuantumHacking in #Web3 #Crypto #AI #VR & #AR by nation-state-backed hacker groups like #USCyberCommand, #NorthKorea, #Iran, #Russia, & #China?

You do? Here's you're TL;DR to minimize your Units of Attention
APT (Advanced Persistent Threat) groups are a prime example of nation-state-backed hacker groups

#CozyBear (APT29), #LazarusGroup (APT38), #DoubleDragon (APT41), #FancyBear (APT28), and #HelixKitten (APT34) are some of the most well-known APT groups
These groups have been known to carry out cyber espionage, intellectual property theft, and sabotage. For instance, the #FancyBear APT group was responsible for the alleged 2016 US election interference
Read 17 tweets
Thread on #APT grps, #hacktivists, #Ransomware gangs with their ‘likely’ associations (as per TTPs and reports) that are playing a significant role in impending #Ukraine #Russian conflict. Correct me if i am wrong or missing any one. 1/
Firstly on Russian 🇷🇺side there are #GhostWriter (#Belarus Govt Backed) #CozyBear (Russian Foreign Intel aka #SVR) #UNC1151 (Minsk based) #FancyBears & #SandWorm (Russian Military Intel aka #GRU) #Turla and #Gamaredon (Russian Internal Intel #FSB Former KGB) 2/
Read 7 tweets
Cyber-statecraft has certain traditions. One is; Ellen Nakashima from WaPo reports the story first. On 9th Dec, "according to people familiar with the matter," she broke that cyber-security giant #FireEye had been hacked to bits by #CozyBear. "Imagine my surprise."
The CEO of FireEye (& Mandiant) is cy-biz super-star Kevin Mandia -- a pioneer in awarding 'Advanced Persistent Threat' status to 'nation-state' gangs. As my book shows he was key in making cyber-statecraft the greatest tool of diplomacy since the gunboat. amazon.com/dp/B08MSZHMGP
In cyber-statecraft, the normal nuanced judgments of an attribution are guided (& funded) by the USG to foreign policy approved conclusions. The USG turned to Mandia to make Pandas into #APT1, Kim Jong-un into Sony's Hacker, #Fancy into APT28 & #Cozy into APT29.
Read 33 tweets
New: #Russia's #APT29, aka #CozyBear, is targeting US, #Canadian #British organizations doing #COVID19 vaccine development, per #UK’s @NCSC - findings supported by @CISAgov

Targets include "governmental, diplomatic, think-tank, healthcare and energy" organizations
Per #UK's @NCSC, #Russia's #APT29, or #CozyBear, is using custom malware - ‘WellMess’ & ‘WellMail’ - "with the intention of stealing information and intellectual property relating to the development and testing of #COVID19 vaccines"
Full assessment from #Britain's @NCSC on #Russia cyber actor #CozyBear looking to hack/steal intel on #COVID19 vaccine research here: ncsc.gov.uk/files/Advisory…
Read 5 tweets
Researchers attributed the Nov 14 attack on U.S. think tanks, non-profits, public sector to #APT29 or #CozyBear, which overlaps with the group we call #YTTRIUM. We don’t believe that there’s enough evidence for this attribution. Here’s our analysis: msft.social/fTgUCI
The attack used spear-phishing emails that mimicked OneDrive notifications and impersonated individuals from the US Department of State. If recipients clicked a link on the emails, they began an exploitation chain that gave attackers remote access. cloudblogs.microsoft.com/microsoftsecur… Image
The attack appeared to target organizations involved with policy formulation and politics or have some influence in that area. Although targets are distributed across the globe, majority are in the United States, particularly in and around Washington, D.C. cloudblogs.microsoft.com/microsoftsecur… Image
Read 3 tweets
BREAKING: #Netherlands' General Intelligence & Security Service (#AIVD) played key role in PROVIDING EVIDENCE TO #FBI ON RUSSIAN INTERFERENCE IN US ELECTION.

AIVD infiltrated Russian hackers group #CozyBear already in summer 2014 !

#TrumpRussia #Mueller

nos.nl/nieuwsuur/arti…
BREAKING: #Netherlands' General Intelligence & Security Service (#AIVD) played key role in PROVIDING EVIDENCE TO #FBI ON RUSSIAN INTERFERENCE IN US ELECTION.

AIVD infiltrated Russian hackers group #CozyBear already in summer 2014 !

Google Translated: translate.google.nl/translate?sl=n…
Dutch intelligence (AIVD) had acces to Russian Cozy Bear hackers group for years and obtained crucial evidence for Russian interference in the U.S. elections.

Official translation available now:

nos.nl/nieuwsuur/arti…
Read 6 tweets

Related hashtags

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!