Ayyyeee… What’s Goodie Everyone. So I got some tea and it involves Spies being behind a hacking campaign.
The Russian government hackers breached a top cybersecurity firm and are also behind a global espionage campaign that also compromised the Treasury and Commerce departments and other government agencies; this is according to people familiar with the matter, who requested anonymity because of the sensitivity of the situation.
The FBI is investigating the campaign by a hacking group working for the Russian foreign intelligence service, SVR. The group, known among private sector security firms as APT29 or Cozy Bear, also hacked the State Department and the White House during the Obama administration.
Reuters was the first report on the hacks of the Treasury and Commerce agencies Sunday, saying they were carried out by a foreign government backed group. The SVR link to the broader campaign is previously unreported.
APT29 has been linked to several has attempted to steal coronavirus vaccine research. The Washington Post also reported that the Russian hacking group, APT29, breached the cybersecurity firm, FireEye, according to sources familiar with the report.
The Russians targeted the National Telecommunications and Information Administration, an agency that handles internet and telecommunications policy, Reuters reported.
The campaign is claimed to be very broad, encompassing an array of targets, including government agencies in the United States and other countries. It has been running for months, according to one person.
In 2015, the same group compromised the servers of the Democratic National Committee. But unlike a rival Russian spy agency, which also hacked the DNC, it did not leak stolen material. In 2016, the GRU military spy agency leaked hacked emails to the online anti secrecy organization WikiLeaks in an operation that disrupted the Democrats national convention in the midst of the presidential campaign.
It is not clear what information was accessed.