Berserk Bear, Energetic Bear

Threat Actor Profile Updated 3 months ago
Download STIX
Preview STIX
Berserk Bear and Energetic Bear are two of the most notorious threat actors in the cybersecurity world. Berserk Bear is a group believed to be linked to the Russian government, and they are known for carrying out cyber espionage operations against various countries. Energetic Bear, on the other hand, is a group that has been linked to attacks on critical infrastructure, such as power grids. In recent years, both groups have been responsible for major cyber attacks that have caused significant damage. In 2020, it was reported that Berserk Bear had targeted COVID-19 vaccine research centers in Canada, the UK, and the US. Energetic Bear, meanwhile, has been linked to attacks on power grids in Ukraine and the US. The threat posed by these groups is significant, as they are capable of causing widespread disruption and financial loss. It is vital that organizations take steps to protect themselves from these threat actors, such as implementing robust cybersecurity measures and regularly training employees on how to identify and respond to potential cyber threats.
What's your take? (Question 1 of 1)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
DragonflyUnspecified
1
Dragonfly is a notable threat actor known for its malicious activities in the cybersecurity landscape. This group has been particularly active in targeting the energy sector across various countries, including the United States, Switzerland, and Turkey. The tactics employed by Dragonfly often involv
Crouching YetiUnspecified
1
Crouching Yeti, also known as Iron Liberty, TG-4192, Energetic Bear, and Dragonfly, is a threat actor group that has been active since at least 2010. This group primarily targets the energy sector, with a specific focus on industrial control systems (ICS). Crouching Yeti's activities are part of a b
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the Berserk Bear, Energetic Bear Threat Actor was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle