Joint Statement by the Cyber Unified Coordination Group (UCG), composed of the FBI, CISA, and ODNI with support from NSA: "This work indicates that an APT actor, likely Russian in origin, is responsible..." https://www.cisa.gov/news/2021/01/05/joint-statement-federal-bureau-investigation-fbi-cybersecurity-and-infrastructure
Report on Russian Cyber Units (Congressional Research Service): https://beta.documentcloud.org/documents/20441144-russian-cyber-units-jan-4-2021 | Collectively, these units are sometimes referred to as APT (Advanced Persistent Threat) 28, Fancy Bear, Voodoo Bear, Sandworm, and Tsar Team.
Russian Cyber Units; Jan 4, 2021

https://beta.documentcloud.org/documents/20441144-russian-cyber-units-jan-4-2021
New Findings From Our Investigation of SUNBURST (SolarWinds): https://orangematter.solarwinds.com/2021/01/11/new-findings-from-our-investigation-of-sunburst/
New Findings From Our Investigation of SUNBURST - Orange Matter

Since the cyberattack on our customers and SolarWinds, we have been working around the clock to support our customers. As we shared in our recent update, we are partnering with multiple industry-le...

https://orangematter.solarwinds.com/2021/01/11/new-findings-from-our-investigation-of-sunburst/
RT @CrowdStrike | SUNSPOT: An Implant in the Build Process (CrowdStrike): https://www.crowdstrike.com/blog/sunspot-malware-technical-analysis/
SUNSPOT Malware: A Technical Analysis | CrowdStrike

In this blog, we offer a technical analysis of SUNSPOT, malware that was deployed into the build environment to inject this backdoor into the SolarWinds Orion platform.

https://www.crowdstrike.com/blog/sunspot-malware-technical-analysis/
RT @WIRED | Kaspersky published new evidence of technical similarities between malware used by the mysterious SolarWinds hackers and the well-known hacker group Turla, believed to be Russian in origin and also known by the names Venomous Bear and Snake. https://www.wired.com/story/solarwinds-russia-hackers-turla-malware/
The SolarWinds Hackers Shared Tricks With a Notorious Russian Spy Group

Security researchers have found links between the attackers and Turla, a sophisticated team suspected of operating out of Moscow's FSB intelligence agency.

https://www.wired.com/story/solarwinds-russia-hackers-turla-malware/
You can follow @780thC.
Tip: mention @twtextapp on a Twitter thread with the keyword “unroll” to get a link to it.

Latest Threads Unrolled:
Those who think consciousness raising & movement building are disconnected, or even a distraction from electoral politics have not paid attention to the history of social change.In this thread, we
Read more
The 2020s will be known as the Remote Work decadeA few predictions of what is likely to emerge[ a thread ] Third Space: Office and Working from Home will
Read more
1/29: Have you ever had a concept explained to you that helps frame complex issues you’ve been wrestling with and opens your eyes to new possibilities? A concept that I
Read more
By continuing to use the site, you are consenting to the use of cookies as explained in our Cookie Policy to improve your experience.