Google's Threat Analysis Group has discovered that a Kremlin-linked cyber-espionage group, APT29, is exploiting the same security flaws as commercial spyware vendors, which raises serious concerns about the intersection of government-sponsored and commercial cyber activities.
APT29, also known as Cozy Bear, has been tied to significant breaches, including the infiltration of US Democratic National Committee servers and the SolarWinds supply chain attack, showcasing the group's persistent threats to national security.
The TAG team observed that the exploit techniques used in recent attacks were remarkably similar to those of commercial spyware companies like NSO Group and Intellexa, which indicates a troubling convergence between state and commercial cyber-espionage tactics.
With Meta and Apple filing lawsuits against NSO Group, and Intellexa under US sanctions for its surveillance tactics, the controversial role of spyware vendors is increasingly scrutinized amid rising concerns over privacy and security.
Collection
[
|
...
]