Security News > 2020 > October > Russian Turla hackers breach European government organization
Russian-speaking hacking group Turla has hacked into the systems of an undisclosed European government organization according to a new Accenture Cyber Threat Intelligence report.
Government entities are advised by ACTI to check network logs for indicators of compromise included at the end of the report and to build detections capable of blocking future Turla attacks.
The Turla group has been active since 1996 and the main suspect behind attacks targeting the Pentagon and NASA, the U.S. Central Command, the Finnish Foreign Ministry, and, earlier this year, Eastern European Ministries of Foreign Affairs.
In May, ESET spotted a new version of the ComRAT backdoor controlled by Turla using the Gmail web interface in data theft attacks that targeted governmental institutions.
Kaspersky shared info on what is believed to be another Turla malware "With a medium-to-low level of confidence", a RAT variant dubbed COMpfun controlled using uncommon HTTP status codes deployed in attacks against European diplomatic entities.
News URL
Related news
- Russian hackers use new Lunar malware to breach a European govt's agencies (source)
- Hackers exploit Ray framework flaw to breach servers, hijack resources (source)
- Finland confirms APT31 hackers behind 2021 parliament breach (source)
- U.S. Cyber Safety Board Slams Microsoft Over Breach by China-Based Hackers (source)
- Microsoft breach allowed Russian spies to steal emails from US government (source)
- Hacker claims Giant Tiger data breach, leaks 2.8M records online (source)
- Russian APT Deploys New 'Kapeka' Backdoor in Eastern European Attacks (source)
- Russian Sandworm hackers pose as hacktivists in water utility breaches (source)
- Russian Sandworm hackers targeted 20 critical orgs in Ukraine (source)
- Russian hackers’ custom tool exploits old Windows Print Spooler flaw (CVE-2022-38028) (source)