locsec/Ukraine-Cyber-Operations
1
Форкнуть 0
Код Задачи Запросы на слияние Действия Пакеты Проекты Релизы Вики Активность

Update May.md

Просмотр исходного кода
Этот коммит содержится в:
BushidoToken 2022-05-27 14:23:36 +01:00 коммит произвёл GitHub
родитель eef390c57b
Коммит 62c372eede
Не найден ключ, соответствующий данной подписи
Идентификатор ключа GPG: 4AEE18F83AFDEB23
1 изменённых файлов: 7 добавлений и 0 удалений
Показать статистику Скачать Patch файл Скачать Diff файл Показать все файлы Свернуть все файлы

7
Threat Reports/May.md
Просмотреть файл

@ -28,3 +28,10 @@
| 19 MAY | Mandiant | The IO Offensive: Information Operations Surrounding the Russian Invasion of Ukraine | [mandiant.com](https://www.mandiant.com/resources/information-operations-surrounding-ukraine) |
| 19 MAY | CyberKnow | Overview of KillNet: Pro-Russian Hacktivists | [cyberknow.medium.com](https://cyberknow.medium.com/killnet-pro-russian-hacktivists-e916ac7201a3) |
| 20 MAY | ESET | Sandworm continues attacks in Ukraine, ESET found an evolution of a malware loader dubbed ArguePatch used during the Industroyer2 attacks. ArguePatch was used to launch CaddyWiper | [twitter.com/esetresearch](https://twitter.com/esetresearch/status/1527531726905409536) |
| 21 MAY | Anonymous | Anonymous declares war on pro-Russian hacker group Killnet | [twitter.com/YourAnonOne](https://twitter.com/YourAnonOne/status/1528048043647434752) |
| 23 MAY | Sekoia | TURLAs new phishing-based reconnaissance campaign in Eastern Europe | [blog.sekoia.io](https://blog.sekoia.io/turla-new-phishing-campaign-eastern-europe/) |
| 24 MAY | Malwarebytes | Unknown APT group has targeted Russia repeatedly since Ukraine invasion | [blog.malwarebytes.com](https://blog.malwarebytes.com/malwarebytes-news/2022/05/unknown-apt-group-has-targeted-russia-repeatedly-since-ukraine-invasion/) |
| 25 MAY | Reuters | A new website that published leaked emails from several leading proponents of Britain's exit from the European Union is tied to Russian hacking group "COLD RIVER" (aka Callisto) by Google TAG | [reuters.com](https://www.reuters.com/technology/exclusive-russian-hackers-are-linked-new-brexit-leak-website-google-says-2022-05-25/) |
| 26 MAY | 360 Qihoo | APT-C-53 (Gamaredon) organization-related cyber attack activities more frequently, and found that the organization began to issue free DDoS Trojan "LOIC" To Conduct DDoS attacks. | [mp.weixin.qq.com](https://mp.weixin.qq.com/s/gJFSlpIlbaI11lcClNN_Xw) |
| 26 MAY | BleepingComputer | Google shut down caching servers at two Russian ISPs | [bleepingcomputer.com](https://www.bleepingcomputer.com/news/technology/google-shut-down-caching-servers-at-two-russian-isps/) |
| 27 MAY | DarkTracer | Threat actor from the Cyber Army of Russia claims to have hacked "sfs(.)gov(.)ua" and leaked the database. | [twitter.com/darktracer_int](https://twitter.com/darktracer_int/status/1530133003841613825) |