Security News > 2024 > February > Russian APT28 Hackers Targeting High-Value Orgs with NTLM Relay Attacks
2024-02-02 14:49
Russian state-sponsored actors have staged NT LAN Manager (NTLM) v2 hash relay attacks through various methods from April 2022 to November 2023, targeting high-value targets worldwide. The attacks, attributed to an "aggressive" hacking crew called APT28, have set their eyes on organizations dealing with foreign affairs, energy, defense, and transportation, as well as those involved with
News URL
https://thehackernews.com/2024/02/russian-apt28-hackers-targeting-high.html
Related news
- Hackers steal Windows NTLM authentication hashes in phishing attacks (source)
- Warning: Thread Hijacking Attack Targets IT Networks, Stealing NTLM Hashes (source)
- Hackers impersonate U.S. government agencies in BEC attacks (source)
- Chinese State Hackers Target Tibetans with Supply Chain, Watering Hole Attacks (source)
- Microsoft says Russian hackers breached its systems, accessed source code (source)
- Microsoft Confirms Russian Hackers Stole Source Code, Some Customer Secrets (source)
- Microsoft: Russian hackers accessed internal systems, code repositories (source)
- Hackers Exploiting Popular Document Publishing Sites for Phishing Attacks (source)
- Russian Hackers May Have Targeted Ukrainian Telecoms with Upgraded 'AcidPour' Malware (source)
- Russian hackers target German political parties with WineLoader malware (source)