An advisory published by the UK National Cyber Security Centre (NCSC) warns of activity by Russian hacking group APT29 and explicitly calls out efforts to target the US, UK, and Canadian vaccine research, according to CNN. Cyber actors from the Russian hacking group, which also goes by the name “the Dukes” or “Cozy Bear”, are targeting organisations involved in coronavirus vaccine development, according to the new warning issued today. APT29 uses a variety of tools and techniques, including spear-phishing and custom malware known as “WellMess” and “WellMail”, according to the NCSC, who have also assessed that the hacking group “almost certainly operate[s] as part of Russian Intelligence Services.”
Experts Comments
One way organisations look to ease the strain on their SOC is to introduce automation that can respond to these alerts through a range of playbooks.
Since the start of the COVID-19 pandemic, our systems have been capturing the changing patterns of security attacks experienced in the Security Operations Centres (SOCs) of our enterprise customers. The data points to a significant increase in state-sponsored APT attacks as nations look to take advantage of the perceived weaknesses of others, or to steal or destroy their COVID research from universities, pharmaceuticals and research institutes.
At the SOC-level there has been a noticeable.....Read More
Dot Your Expert Comments
Only for registered and approved experts. Please register before providing comments. Register here
Linkedin Message
@Jake Moore, Cybersecurity Specialist, provides expert commentary for "dot your expert comments" at @Information Security Buzz.
"They are quick to target vulnerabilities, wherever they may lie...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/cozy-bear-hackers-target-covid-19-research-centres-in-uk-us-and-canada
Facebook Message
@Jake Moore, Cybersecurity Specialist, provides expert commentary for "dot your expert comments" at @Information Security Buzz.
"They are quick to target vulnerabilities, wherever they may lie...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/cozy-bear-hackers-target-covid-19-research-centres-in-uk-us-and-canada