Loading...
Market
Primary method of APT29's next attack by May 2025?
2
Resolution / Starting Odds
Phishing • 25%
Malware • 25%
Ransomware • 25%
Other • 25%
Cybersecurity reports detailing APT29's methods
Story
AWS Disrupts Russian APT29 Cyber Operation Using Malicious RDP Files to Steal Sensitive Data from Ukraine
Oct 26, 2024, 04:30 AM
Amazon Web Services (AWS) has taken action against domains associated with the Russian cyber espionage group APT29, which were reportedly used in a campaign to steal sensitive data. The AWS security team, in collaboration with the Ukrainian Computer Emergency Response Team (CERT-UA), identified that APT29 had been mimicking AWS to harvest Windows credentials from targets in Ukraine. This operation involved malicious Remote Desktop Protocol (RDP) files and was part of a broader phishing effort aimed at Ukrainian entities. CERT-UA has issued warnings regarding sophisticated email attacks utilizing these RDP files to breach sensitive systems in the region. The coordinated effort by AWS and CERT-UA aims to disrupt these malicious activities and protect against further cyber threats.
View original story
Similar markets
Nearest Neighbor Attack • 25%
Phishing • 25%
Malware • 25%
Other • 25%
Human rights group • 25%
Private security company • 25%
State institution • 25%
Educational institution • 25%
Phishing attacks • 25%
Ransomware • 25%
DDoS attacks • 25%
Supply chain attacks • 25%
Ransomware • 25%
Denial of Service (DoS) • 25%
Phishing • 25%
Malware • 25%
U.S. presidential campaigns • 25%
Israeli organizations • 25%
Other U.S. entities • 25%
Other • 25%
Drone strike • 25%
Missile strike • 25%
Cyber attack • 25%
Other • 25%
Missiles • 25%
Drones • 25%
Artillery • 25%
Cyber attacks • 25%
Financial • 25%
Healthcare • 25%
Government • 25%
Technology • 25%
Phishing • 25%
Malware • 25%
DDoS • 25%
Exploiting Vulnerabilities • 25%
Government • 25%
Finance • 25%
Healthcare • 25%
Other • 25%
Sanctions • 25%
Diplomatic measures • 25%
Cyber retaliation • 25%
Public condemnation only • 25%