Sednit update: How Fancy Bear Spent the Year

The Sednit group — also known as Strontium, APT28, Fancy Bear or Sofacy — is a group of attackers operating since 2004, if not earlier, and whose main objective is to steal confidential information from specific targets. This article is a follow-up to ESET’s presentation at BlueHat in November 2017. Late in 2016 we published a white paper covering Sednit activity … More Sednit update: How Fancy Bear Spent the Year

Sednit adds two zero-day exploits using ‘Trump’s attack on Syria’ as a decoy

Introduction The Sednit group, also known as APT28, Fancy Bear and Sofacy, is a group of attackers operating since at least 2004 and whose main objective is to steal confidential information from specific targets. In October 2016, ESET published an extensive analysis of Sednit’s arsenal and tactics in a whitepaper titled En Route with Sednit. Last … More Sednit adds two zero-day exploits using ‘Trump’s attack on Syria’ as a decoy

IAAF: Sednit cyber-gang behind cyberattack

The International Association of Athletics Federations (IAAF) has confirmed that its database of Therapeutic Use Exemption (TUE) applications has fallen victim to a suspected cyberattack from the notorious Sednit group. The attack by the group, also known as Fancy Bear, was detected on February 21st during a ‘proactive investigation’ by Context Information Security, which was … More IAAF: Sednit cyber-gang behind cyberattack

New ESET research paper puts Sednit under the microscope

Security researchers at ESET have released their latest research into the notorious Sednit cyberespionage group, which has targeted over 1000 high profile individuals with phishing attacks and zero-day exploits in their attempts to steal confidential information. The Sednit gang, also known sometimes as APT28, Fancy Bear, Pawn Storm or Sofacy, are highly experienced. It has … More New ESET research paper puts Sednit under the microscope