TTCSIRT-324.07.17.20: TT-CSIRT ADVISORY-APT29 TARGETS COVID-19 VACCINE DEVELOPMENT
APT29 (also known as ‘the Dukes’ or ‘Cozy Bear’) is a suspected Russian Intelligence Cyber Espionage Group.
The United Kingdom’s National Cyber Security Centre issued detection and mitigation advice for organisations involved in coronavirus vaccine development with custom malware by APT29.
The report goes into detail regarding recent Tactics, Techniques and Procedures (TTPs) of the APT29 group also known as ‘the Dukes’ or ‘Cozy Bear’
The United States National Security Agency (NSA) also agrees with the claims and details of the United Kingdom’s National Cyber Security Centre APT29 advisory report.
The Trinidad and Tobago Cyber Security Incident Response Team (TTCSIRT) encourages users and administrators to review the link provided for a more comprehensive insight into the aforementioned report: