Latest posts tagged with #Gamaredon on Bluesky
📡💻 Gamaredon has unleashed Android spyware in former Soviet states! Stay informed about this concerning cybersecurity threat. Read more here: innovirtuoso.com/cybersecurity/gamaredon-... #Cybersecurity #Spyware #Gamaredon
#apt #gamaredon with a rar exploit trying to unpack Лист_2_14_1_1836_26.12.2025.pdf:..\..\..\..\..\..\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\..\Startup\2_14_1_1836_26.12.2025.HTA
43a4a982ccb31e4412912f52302a9131
#gamaredon Адвокатський запит_14_19_7_1030_19.12.2025.rar
a3feca6e745f1989131eeca38e0498ad #apt
#ESETresearch analyzed the #Gamaredon VBScript payload recently flagged by @ClearskySec. It wipes registry Run keys, scheduled tasks, and kills processes – however, our assessment is that this is likely to clean researchers’ machines, not a shift to destructive ops. x.com/ClearskySec/... 1/4
‼️ Unprecedented cyber alliance: Russian APT Gamaredon & North Korea's Lazarus Group caught sharing C2 attack infrastructure. The collaboration signals a dangerous escalation in state-sponsored threats. #ThreatIntel #APT #Gamaredon #Lazarus #CyberWa...
Two of the world’s most prolific state-linked #cybercrime groups — #russia’s #Gamaredon and #NKorea’s #Lazarus collective — have been spotted sharing resources.
Experts found overlapping #tactics and shared #infrastructure between the two groups.
www.politico.eu/article/russ...
#gamaredon #apt #dailyphish
Запит на отримання інформації командира військової частини А0135_11-967_10.11.2025.HTA 2a04a7584d90cff161be936b0b3f43c0
Запит командира військової частини А0135.rar 5df7ff42d566156ce7c478f1a40896e3
Alert: #Gamaredon targets government entities using #WinRAR vulnerability (CVE-2025-8088) to deploy malware via phishing emails. Ensure your software is updated and stay vigilant. #CyberSecurity #Phishing Link: thedailytechfeed.com/gamaredon-ex...
#dailyphish #gamaredon
here's a recent gamaredon phish. cant stop wont stop ->
Повістка про виклик_357-16230-25_24.10.2025.pdf:.._.._.._.._.._.._AppData_Roaming_Microsoft_Windows_Start Menu_Programs_Startup_357-16230-25_24.10.2025.HTA
f2368a466c7a67ab3690736dd9d84f62
Gruppi come Sandworm, Fancy Bear e Cozy Bear guidano nuove minacce cyber contro infrastrutture ucraine con attacchi avanzati di phishing e malware.
#apt #Armagedon #CERTUA #evidenza #FancyBear #Gamaredon #Russia #sandworm
www.matricedigitale.it/2025/10/09/c...
#ESETresearch has observed #Gamaredon exploiting CVE-2025-8088 (#WinRAR path traversal) in an ongoing spearphishing campaign. This vulnerability allows arbitrary file write via crafted RAR archives. 1/6
ESET reveals Turla and Gamaredon collaboration
ESET reports FSB‑linked groups Turla and Gamaredon coordinated in Ukraine, with Gamaredon deploying Ptero tools while Turla installed Kazuar v3 on compromised machines during four incidents in February. Read more: getnews.me/eset-reveals-turla-and-g... #turla #gamaredon
Two of the Kremlin’s most active hack groups are collaborating, ESET says https://arstechni.ca #advancedpersistentthreat #gamaredon #Security #Biz&IT #russia #turla #APT
Two of the Kremlin’s most active hack groups are collaborating, ESET says Turla is getting a helping hand from Gamaredon. Both are units of Russia's FSB. Two of the Kremlin’s most active ha...
#Biz #& #IT #Security #advanced #persistent #threat #APT […]
[Original post on arstechnica.com]
Russian hacking groups Gamaredon and Turla collaborate to deploy Kazuar backdoor in Ukraine, marking a significant escalation in coordinated cyber operations. #CyberSecurity #Ukraine #Gamaredon #Turla Link: thedailytechfeed.com/russian-cybe...
Russian cyber groups Turla and Gamaredon collaborate in targeted attacks on Ukraine, deploying sophisticated malware to compromise sensitive systems. #CyberSecurity #Ukraine #Turla #Gamaredon Link: thedailytechfeed.com/collaboratio...
Gamaredon e Turla cooperano in Ucraina: PteroGraphin riavvia Kazuar, accesso massivo e impianto selettivo elevano il rischio per reti governative.
#ESET #evidenza #fsb #Gamaredon #Kazuar #PteroGraphin #turla #ucraina
www.matricedigitale.it/2025/09/19/g...
📡💻 Gamaredon has unleashed Android spyware in former Soviet states! Stay informed about this concerning cybersecurity threat. Read more here: innovirtuoso.com/cybersecurity/gamaredon-... #Cybersecurity #Spyware #Gamaredon
📡💻 Gamaredon has unleashed Android spyware in former Soviet states! Stay informed about this concerning cybersecurity threat. Read more here: innovirtuoso.com/cybersecurity/gamaredon-... #Cybersecurity #Spyware #Gamaredon
📡💻 Gamaredon has unleashed Android spyware in former Soviet states! Stay informed about this concerning cybersecurity threat. Read more here: innovirtuoso.com/cybersecurity/gamaredon-... #Cybersecurity #Spyware #Gamaredon
Gamaredon Unleashes Six New Malware Tools for Stealth, Persistence, and Lateral Movement
gbhackers.com/gamaredon-un...
#Infosec #Security #Cybersecurity #CeptBiro #Gamaredon #MalwareTools #Stealth #Persistence #LateralMovement
Russian APT 'Gamaredon' Hits Ukraine With Fierce Phishing
www.darkreading.com/cyberattacks...
#Infosec #Security #Cybersecurity #CeptBiro #Russian #APT #Gamaredon #Ukraine #FiercePhishing
Besides spearphishing, #Gamaredon continues to use custom malware for lateral movement, weaponizing USB and now also network drives via updated versions of PteroLNK. Additionally, the new tool PteroTickle weaponizes Python apps converted to executables. 3/9
In 2024, #Gamaredon returned to exclusively targeting Ukrainian governmental institutions, significantly increasing the size and frequency of its #spearphishing campaigns compared to previous years, as shown in the chart. 2/9
#ESETresearch has conducted a comprehensive technical analysis of new malicious tools and significant updates observed in 2024 in the arsenal of the Russia-aligned #Gamaredon #APTgroup targeting Ukraine🇺🇦. www.welivesecurity.com/en/eset-rese... 1/9
Following our recent #Gamaredon publication, the actor upgraded their PteroLNK malware and expanded infrastructure. Key changes:
- NTFS Alternative Data Streams (ADS) storage
- Randomized HTTP headers breaking network sigs
- Expanded tunneling services
- More robust DDR approach
Die jüngsten Enthüllungen zur Hackergruppe Gamaredon zeigen: es ist oft geopolitisches Kalkül. Seit Jahren wird vermutet, dass Russland Gruppen wie Gamaredon unterstützt oder gar direkt steuert.
#Gamaredon #CyberWar #Russland #Cyberangriff #KritischeInfrastrukturen
www.it-daily.net/it-sicherhei...
#gamaredon #apt #dailyphish 2-135-25_14.04.2025.rar
fa82cd0d7bd46aa8e6757bcd5c974c77a6a54866d39ae7a4563e6782ce1169de
Thanks @agreenberg.bsky.social for talking to @esetresearch.bsky.social for your story on lesser known threat actors. Robert Lipovsky, Anton Cherepanov and Zoltán Rusnák enjoyed providing a window into #Gamaredon.
Via @wired.com - www.wired.com/story/gamare...
#ESET #cybersecurity
