Latest GRU news

U.S. indicts Russian GRU hacker, offers $10 million reward

The U.S. indicted Russian national Amin Timovich Stigal for his alleged role in cyberattacks targeting Ukrainian government computer networks in an operation from the Russian foreign military intelligence agency (GRU) prior to invading the country.
- Bill Toulas
- June 27, 2024
- 03:31 PM
- 2
NATO and EU condemn Russia's cyberattacks against Germany, Czechia

NATO and the European Union, with international partners, formally condemned a long-term cyber espionage campaign against European countries conducted by the Russian threat group APT28.
- Sergiu Gatlan
- May 03, 2024
- 11:47 AM
- 4
Russian military hackers target NATO fast reaction corps

Russian APT28 military hackers used Microsoft Outlook zero-day exploits to target multiple European NATO member countries, including a NATO Rapid Deployable Corps.
- Sergiu Gatlan
- December 07, 2023
- 05:20 PM
- 0
Russian hackers switch to LOTL technique to cause power outage

Russian state hackers have evolved their methods for breaching industrial control systems by adopting living-off-the-land techniques that enable reaching the final stage of the attack quicker and with less resources
- Ionut Ilascu
- November 09, 2023
- 06:12 AM
- 0
GRU hackers attack Ukrainian military with new Android malware

Hackers working for the Main Directorate of the General Staff of the Armed Forces of the Russian Federation, more commonly known as the GRU, have been targeting Android devices in Ukraine with a new malicious framework named 'Infamous Chisel.
- Bill Toulas
- August 31, 2023
- 10:48 AM
- 0
Russian APT28 hackers breach Ukrainian govt email servers

A threat group tracked as APT28 and linked to Russia's General Staff Main Intelligence Directorate (GRU) has breached Roundcube email servers belonging to multiple Ukrainian organizations, including government entities.
- Sergiu Gatlan
- June 20, 2023
- 09:00 AM
- 0
Microsoft links data wiping attacks to new Russian GRU hacking group

Microsoft has linked a threat group it tracks as Cadet Blizzard since April 2023 to Russia's Main Directorate of the General Staff of the Armed Forces (also known as GRU).
- Sergiu Gatlan
- June 14, 2023
- 01:27 PM
- 1
Hackers use new SwiftSlicer wiper to destroy Windows domains

Security researchers have identified a new data-wiping malware they named SwiftSlicer that aims to overwrite crucial files used by the Windows operating system.
- Ionut Ilascu
- January 28, 2023
- 10:21 AM
- 5
US offers $10 million reward for tips on Russian Sandworm hackers

The U.S. is offering up to $10 million to identify or locate six Russian GRU hackers who are part of the notorious Sandworm hacking group.
- Lawrence Abrams
- April 26, 2022
- 05:20 PM
- 0
CISA warns orgs of WatchGuard bug exploited by Russian state hackers

The Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal civilian agencies and urged all US organizations on Monday to patch an actively exploited bug impacting WatchGuard Firebox and XTM firewall appliances.
- Sergiu Gatlan
- April 11, 2022
- 06:24 PM
- 0
US, UK link new Cyclops Blink malware to Russian state hackers

New malware dubbed Cyclops Blink has been linked to the Russian-backed Sandworm hacking group in a joint security advisory published today by US and UK cybersecurity and law enforcement agencies.
- Sergiu Gatlan
- February 23, 2022
- 10:49 AM
- 0
White House pins Ukraine DDoS attacks on Russian GRU hackers

Today, the White House has linked the recent DDoS attacks that knocked down the sites of Ukrainian banks and defense agencies to Russia's Main Directorate of the General Staff of the Armed Forces (also known as GRU).
- Sergiu Gatlan
- February 18, 2022
- 04:33 PM
- 0
Russian hackers made millions by stealing SEC earning reports

A Russian national working for a cybersecurity company has been extradited to the U.S. where he is being charged for hacking into computer networks of two U.S.-based filing agents used by multiple companies to file quarterly and annual earnings through the Securities and Exchange Commissions (SEC) system.
- Ionut Ilascu
- December 21, 2021
- 12:18 PM
- 0
NSA: Russian GRU hackers use Kubernetes to run brute force attacks

The National Security Agency (NSA) warns that Russian nation-state hackers are conducting brute force attacks to access US networks and steal email and files.
- Lawrence Abrams
- July 01, 2021
- 11:00 AM
- 1
EU sanctions Russian hackers over 2015 German parliament attack

The Council of the European Union today announced sanctions imposed on Russian military intelligence officers part of the 85th Main Centre for Special Services (GTsSS) for their involvement in a 2015 hack of the German Federal Parliament (Deutscher Bundestag).
- Sergiu Gatlan
- October 22, 2020
- 01:26 PM
- 2
US indicts Russian GRU 'Sandworm' hackers for NotPetya, worldwide attacks

The U.S. Department of Justice has charged six Russian intelligence operatives for hacking operations related to the Pyeongchang Winter Olympics, the 2017 French elections, and the notorious NotPetya ransomware attack.
- Lawrence Abrams
- October 19, 2020
- 02:42 PM
- 1
NSA discloses new Russian-made Drovorub malware targeting Linux

The National Security Agency is warning about espionage operations from the Russian Intelligence Directorate (GRU) using a previously undisclosed Linux malware toolset called Drovorub.
- Ionut Ilascu
- August 13, 2020
- 01:34 PM
- 0
NSA: Russian govt hackers exploiting critical Exim flaw since 2019

The U.S. National Security Agency (NSA) says that Russian military threat actors tracked as Sandworm Team have been exploiting a critical flaw in the Exim mail transfer agent (MTA) software since at least August 2019.
- Sergiu Gatlan
- May 28, 2020
- 11:10 AM
- 0
7 Russian GRU Officers Indicted For Retaliatory Hacking of Anti-Doping Orgs

A U.S. grand jury today indicted seven defendants, all officers in the Russian Main Intelligence Directorate (GRU), for hacking, wire fraud, identity theft, and money laundering.
- Lawrence Abrams
- October 04, 2018
- 07:27 PM
- 1