🇷🇺

APT29

Also known as: Cozy Bear, Midnight Blizzard, NOBELIUM, The Dukes, Dark Halo

Russian SVR intelligence. SolarWinds supply chain attack. Targets diplomatic entities.

Origin: Russia

Targets

governmentdiplomaticthink tankstechnology

Associated Intelligence

ROADtools Misused in Cloud Attacks

Threat actors are misusing the open-source framework ROADtools to conduct cloud intrusions, potentially affecting cloud-based systems and services. To identify and mitigate malicious use, organizations should monitor for suspicious activity and implement security controls. ROADtools' misuse highlights the need for vigilance

22/5/2026Medium

Cisco Firepower Malware

Suspected state-sponsored attackers are using

24/4/2026High

All Threat Actors Latest Intelligence