According to experts within the cybersecurity realm, three supposed hacktivist groups are assisting and collaborating with Russian efforts. This revealing information now provides a glimpse into the extent of Russian cyber interest and the capabilities of these various government entities.
Mandiant, the Google-owned and operated cybersecurity threat intelligence and incident response branch, shares that "moderators of the purported hacktivist Telegram channels 'XakNet Team,' 'Infoccentr,' and 'CyberArmyofRussia_Reborn' are coordinating their operations with Russian Main Intelligence Directorate (GRU)-sponsored cyber threat actors."
This latest assessment by Mandiant uses sensitive data that Russia had stolen from Ukrainian organizations and government departments that took place within only 24 hours thanks to the Russian nation-state group tracked as APT28 (aka Fancy Bear, Sofacy, or Strontium).
APT28, which has been around since 2009, is said to be linked to the Russian military intelligence agency, General Staff Main Intelligence Directorate (GRU), which gained notoriety back in 2016 for the Democratic National Committee (DNC) in the run-up to the U.S. presidential election.
Hungry for more? Join me each week, where I'll break down complex topics and dissect the latest news within the cybersecurity industry and blockchain ecosystem, simplifying the tech world.