Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Timo Steffens Profile picture
Timo Steffens
@Timo_Steffens
Works at a German agency on cyber-espionage. Author of 'Attribution of Advanced Persistent Threats' (Springer, 2020). Tweets are personal opinions.
Nov 20, 2018 11 tweets 2 min read
With regards to the recent discussions about APT29's potential comeback, the attribution of OlympicDestroyer, and Zebrocy's shifting targets, some thoughts on what I call the Vermeer effect of APT clustering. 1/x As illustrative background from history of art: Roughly 80 years ago Han van Meegeren forged a new painting in the style of Vermeer. He managed to convince an art expert to certify the painting as a genuine Vermeer. 2/x
Sep 6, 2018 10 tweets 2 min read
The indictment about the Sony and Bangladesh bank attacks is 179 pages. Here are some first insights:

1/n
documentcloud.org/documents/4834… First, some remarks on methodology:

Compared to the GRU indictment from a few weeks earlier, this one contains less details about the individuals and their organization. E.g. it is not really clear how many "co-conspirators" are covered and how close their cooperation is.

2/n