Ghostwriter Disinformation Campaign Targets NATO Allies
May 20, 2021
May 3, 2021
Compliance Twitter Get Permission
Fake social media posts and news items about NATO are part of the Ghostwriter campaign that has targeted parts of Eastern Europe. (Source: FireEye)
An ongoing disinformation campaign dubbed Ghostwriter, which leverages compromised social media accounts, is targeting several NATO member countries in Europe, attempting to undermine confidence in the defensive organization as well as spread discord in Eastern Europe, according to the security firm FireEye.
Researchers at FireEye, who uncovered the campaign in July 2020, have now documented an additional 20 incidents related to the cyber operation, including at least one earlier this year, the report notes.
minute read
Share this article:
A coalition of 60 global entities (including the DoJ) has proposed a sweeping plan to hunt down and disrupt ransomware gangs by going after their financial operations.
Ransomware has reached crisis levels across business sectors and across the globe, but a public-private Ransomware Task Force aims to stem the tide of attacks by disrupting the crooks’ business model.
Join Threatpost for “Fortifying Your Business Against Ransomware, DDoS & Cryptojacking Attacks” a LIVE roundtable event on Wednesday, May 12 at 2:00 PM EDT for this FREE webinar sponsored by Zoho ManageEngine.
The Institute for Security and Technology (IST) put together the coalition, which includes more than 60 members from software companies, government agencies, cybersecurity vendors, financial services companies, nonprofits and academic institutions. Big names associated with the project include the U.S. Department of Justice, Europol and the U.K.’s National Cy
As cryptocurrency values continue to rise, cryptojacking becomes more attractive to cybercriminals. Now, a powerful hardware-based threat detection technology is being integrated into a Microsoft enterprise security product to help protect businesses from cryptojacking malware. The action integrates Intel Threat Detection Technology with Microsoft Defender for Endpoint.
Get Permission
Fake social media posts and news items about NATO are part of the Ghostwriter campaign that has targeted parts of Eastern Europe. (Source: FireEye)
An ongoing disinformation campaign dubbed Ghostwriter, which leverages compromised social media accounts, is targeting several NATO member countries in Europe, attempting to undermine confidence in the defensive organization as well as spread discord in Eastern Europe, according to the security firm FireEye.
Researchers at FireEye, who uncovered the campaign in July 2020, have now documented an additional 20 incidents related to the cyber operation, including at least one earlier this year, the report notes.
The Ghostwriter campaign is primarily aimed at citizens of Poland, Lithuania and Latvia, researchers report. The operation is mainly designed to undermine confidence in NATO operations in Eastern Europe as well as generate opposition to the deployment of soldiers from other countries, including the U.S. and Can
The alert does not point to any specific new and recent threats or attacks from APT29 (aka Cozy Bear, Dukes, and Yttrium) targeting organizations in these sectors. But it does note the longstanding threat the group has posed to US organizations and the group s use of customized tools to maximize stealth and to move laterally within victim networks. Since at least 2018, the group has shifted from predominantly targeting on-premises assets to targeting cloud-hosted email and other cloud resources, the three agencies say. [SVR] will continue to seek intelligence from US and foreign entities through cyber exploitation, using a range of initial exploitation techniques that vary in sophistication, coupled with stealthy intrusion tradecraft within compromised networks, the alert notes.