Russian Cyberattacks Target COVID-19 Research, Vaccine Development

  /     /     /  
Publicated : 23/11/2024   Category : security

Russian Cyberattacks Target COVID-19 Research, Vaccine Development


Government agencies in the US, UK, and Canada report Russian group Cozy Bear is targeting organizations developing coronavirus vaccines.


Russian cyberattacks are targeting organizations involved with COVID-19 research and vaccine development, according to a new joint advisory from the US, UK, and Canadian governments.
Cozy Bear, also known as APT29, is a cyber-espionage group almost certainly part of Russian intelligence services that uses several tools and techniques to primarily target governmental, diplomatic, think-tank, healthcare, and energy organizations, the advisory states.
The group has targeted multiple institutions involved with COVID-19 vaccine development in the US, UK, and Canada throughout 2020. Its highly likely its goal is to steal data and intellectual property related to vaccine testing and development. APT29 is reportedly using WellMess and WellMail custom malware to target organizations around the world, including those working on COVID-19 vaccines. Neither malware has previously been linked to the group.
The UKs National Cyber Security Centre (NCSC) published the advisory with agreement from Canadas Communications Security Establishment (CSE), the US National Security Agency (NSA), and DHS Cybersecurity and Infrastructure Security Agency (CISA), which published its own
advisory
for the threat and included Sorefang malware among APT29s attack tools.
Targeted organizations were not disclosed. Read the full Joint Cybersecurity Advisory via
NCSC
.
 
 
Register now for this years fully virtual Black Hat USA, scheduled to take place August 1–6, and get more information about the event on the Black Hat website. Click for details on
conference information
 and
to register
.

Last News

▸ ArcSight prepares for future at user conference post HP acquisition. ◂
Discovered: 07/01/2025
Category: security
▸ Samsung Epic 4G: First To Use Media Hub ◂
Discovered: 07/01/2025
Category: security
▸ Many third-party software fails security tests ◂
Discovered: 07/01/2025
Category: security


Cyber Security Categories
Google Dorks Database
 		Exploits Vulnerability
 		Exploit Shellcodes

CVE List
 		Tools/Apps
 		News/Aarticles

Phishing Database
 		Deepfake Detection
 		Trends/Statistics & Live Infos



Tags:
Russian Cyberattacks Target COVID-19 Research, Vaccine Development