ID | Votes | Profile Description |
---|---|---|
Turla | 5 | Turla, a threat actor linked to Russia, is known for its sophisticated cyber-espionage activities. It has been associated with numerous high-profile attacks, employing innovative techniques and malware to infiltrate targets and execute actions with malicious intent. According to MITRE ATT&CK and MIT |
Uroburos | 4 | Uroburos, also known as Snake, Turla, Pensive Ursa, and Venomous Bear, is a sophisticated malware linked to the Russian Federal Security Service (FSB). The development of this malicious software began in late 2003, with its operations traced back to at least 2004. Uroburos is part of a broader arsen |
Snake | 2 | Snake, also known as EKANS, is a threat actor first identified by Dragos on January 6, 2020. This malicious entity is notorious for its deployment of ransomware and keyloggers, primarily targeting business networks. The Snake ransomware variant has been linked to Iran and exhibits an industrial focu |
ID | Type | Votes | Profile Description |
---|---|---|---|
Kazuar | Unspecified | 4 | Kazuar is a sophisticated multiplatform trojan horse malware, linked to the Russian-based threat group Turla (also known as Pensive Ursa, Uroburos, Snake), which has been operating since at least 2004. This group, believed to be connected to the Russian Federal Security Service (FSB), utilizes an ar |
Ursa | Unspecified | 2 | Ursa is a highly active and motivated malware threat actor, also known as APT28, Fancy Bear, and Sofacy, which has been linked to various high-profile cyberattacks, including the US election interference in 2016 and the NotPetya attacks. The group is known for its use of the HeadLace backdoor malwar |
ID | Type | Votes | Profile Description |
---|---|---|---|
Pensive | Unspecified | 2 | Pensive Ursa, also known as Turla or Uroburos, is a Russian-based threat group that has been active since at least 2004 and is linked to the Russian Federal Security Service (FSB). The group employs advanced and stealthy tools like Kazuar, a .NET backdoor used as a second stage payload. In 2023, Pen |
Preview | Source Link | CreatedAt | Title |
---|---|---|---|
Checkpoint | 10 months ago | 6th November – Threat Intelligence Report - Check Point Research | |
CERT-EU | 10 months ago | Cyber Security Week In Review: November 3, 2023 | |
DARKReading | 10 months ago | Upgraded Kazuar Backdoor Offers Stealthy Power | |
CERT-EU | 10 months ago | Over the Kazuar’s nest: Cracking down on a freshly hatched backdoor used by Pensive Ursa - Cyber Security Review | |
InfoSecurity-magazine | 10 months ago | Palo Alto Reveals New Features in Russian APT Turla's Kazuar Backdoor | |
Unit42 | 10 months ago | Over the Kazuar’s Nest: Cracking Down on a Freshly Hatched Backdoor Used by Pensive Ursa (Aka Turla) | |
Unit42 | a year ago | Threat Group Assessment: Turla (aka Pensive Ursa) |