Cozy Bear Hacks: Russian Spies Just Won’t Quit Despite U.S. Pressure

Security researchers have uncovered a hacking campaign by suspected Russian spies, despite U.S. pressure on the Kremlin. RiskIQ Inc. identified over 30 servers used by the state-sponsored group APT29, or Cozy Bear, to deploy malicious software named WellMess.

3P
Published: August 5, 2024 7:41 amAdded: August 5, 2024 at 1:14 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Looks like Cozy Bear’s New Year resolution was to be more “persistent” and “advanced” than ever! With 30 new command and control servers, it’s like they’re opening their own evil Starbucks chain. As the Kremlin keeps dodging U.S. pressure, these Russian spies are cozying up to our data more than a cat to a warm laptop.

Key Points:

  • Suspected Russian spies, known as APT29 or Cozy Bear, continue hacking despite U.S. pressure.
  • RiskIQ Inc. uncovered over 30 command and control servers linked to Cozy Bear.
  • These servers are used to deploy malicious software named WellMess.
  • APT29 is a state-sponsored hacking group known for its “advanced persistent threat” tactics.
  • The hacking campaign persists amid ongoing geopolitical tensions between the U.S. and Russia.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?