r/technology – SolarWinds hackers are back with a new mass campaign, Microsoft says — Kremlin-backed group uses hacked account to impersonate US aid agency in malicious emails.


This is the best tl;dr I could make, original reduced by 89%. (I’m a bot)


The Kremlin-backed hackers who targeted SolarWinds customers in a supply chain attack have been caught conducting a malicious email campaign that delivered malware-laced links to 150 government agencies, research institutions and other organizations in the US and 23 other countries, Microsoft said.

The campaign was carried out by a group that Microsoft calls Nobelium and is also known as APT29, Cozy Bear, and the Dukes.

During this early iteration, Microsoft said, the ISO image contained no malicious payload, leading company researchers to conclude the purpose was to “Record attributes of those who accessed the URL.” In a later phase, the campaign sent emails that contained an HTML file.


Extended Summary | FAQ | Feedback | Top keywords: campaign#1Nobelium#2file#3Microsoft#4email#5


This is the best tl;dr I could make, original reduced by 89%. (I’m a bot)


The Kremlin-backed hackers who targeted SolarWinds customers in a supply chain attack have been caught conducting a malicious email campaign that delivered malware-laced links to 150 government agencies, research institutions and other organizations in the US and 23 other countries, Microsoft said.

The campaign was carried out by a group that Microsoft calls Nobelium and is also known as APT29, Cozy Bear, and the Dukes.

During this early iteration, Microsoft said, the ISO image contained no malicious payload, leading company researchers to conclude the purpose was to “Record attributes of those who accessed the URL.” In a later phase, the campaign sent emails that contained an HTML file.


Extended Summary | FAQ | Feedback | Top keywords: campaign#1Nobelium#2file#3Microsoft#4email#5

Leave a Comment

Your email address will not be published. Required fields are marked *