SummaryOperation Undercut is a covert influence operation conducted by Russias Social Design Agency (SDA) to sway public opinion against Ukraine and weaken Western support. Leveraging AI-enhanced videos and impersonating reputable news sources, Operation Undercut disseminates disinformation
Continue ReadingCategory: Recorded Future
Building Consistent Efforts: Veterans’ Causes at Recorded Future
Building Consistent Efforts: Veterans Causes at Recorded Future2024 Veterans Day celebrations kicked off with our 3rd Annual Armed Forces Retirement Home (AFRH) event for Veterans Day on November 8th in Washington, DC! Residents, local veterans, active
Continue ReadingRussia-Aligned TAG-110 Targets Asia and Europe with HATVIBE and CHERRYSPY
SummaryInsikt Group has identified an ongoing cyber-espionage campaign conducted by TAG-110, a Russia-aligned threat group targeting organizations in Central Asia, East Asia, and Europe. Using custom malware tools HATVIBE and CHERRYSPY, TAG-110 primarily attacks government entities,
Continue ReadingRussian Sabotage Activities Escalate Amid Fraught Tensions
SummaryRussia is likely ramping up its sabotage operations across Europe, targeting critical infrastructure to destabilize NATO allies and disrupt their support for Ukraine. Recent incidents, including break-ins at water treatment facilities in Finland and explosions at
Continue ReadingChina-Nexus TAG-112 Compromises Tibetan Websites to Distribute Cobalt Strike
SummaryIn a recent cyber campaign, the Chinese state-sponsored threat group TAG-112 compromised two Tibetan websites, Tibet Post and Gyudmed Tantric University, to deliver the Cobalt Strike malware. Recorded Futures Insikt Group discovered that the attackers embedded
Continue ReadingWhy the Shift to SaaS Amplifies Identity-Based Risk
Increasingly, attackers don't hack in anymorethey log in. As enterprises rapidly adopt cloud-based SaaS applications, our security landscape has fundamentally shifted. Identity, not infrastructure, has become the primary target.Why Identity Is the New BattlefieldTo understand the
Continue ReadingPredict D.C. and London: The Fight Against Ransomware Enters a New Phase
Having just wrapped up our D.C. and London Predict 2024 conferences, the Recorded Future team is incredibly excited about the future of cybersecurity. Over the span two days in both cities, Predict attendees heard from global
Continue ReadingCybersecurity Awareness Month: Gamifying Cybersecurity Training
At Recorded Future, we believe cybersecurity training should be engaging and effective. That's why we incorporate gamification into our annual and quarterly tabletop exercises. We ensure our employees are prepared to handle real-world security threats by
Continue ReadingRussian Strategic Information Attack for Catastrophic Effect
SummaryRussias Strategic Information Attack (SIA) concept focuses on non-kinetic methods to disrupt or destroy adversary national critical infrastructure (NCI) during strategic conflicts. Insikt Group acknowledges that SIA is not an official term used in Russian or
Continue ReadingOperation Overload Impersonates Media to Influence 2024 US Election
SummaryOperation Overload, a Russia-aligned influence operation, is aggressively targeting the 2024 US presidential election. Using fake news, fact-checking sites, and AI-generated audio, it seeks to manipulate public opinion by impersonating trusted media organizations. This campaign primarily
Continue Reading