GRU 85th #FancyBear or #APT28 leverages Drovorub to ensure stealthy, persistent access on high-value Linux systems. Detection methodologies in the advisory should be implemented with urgency.
The Russian GRU 85th GTsSS, sometimes publicly known as #APT28 or #FancyBear, is using a previously undisclosed #Linux malware called Drovorub for cyber espionage operations.

For full details and mitigations, review our #cybersecurity advisory with @FBI: nsa.gov/news-features/… pic.twitter.com/sxkkuJhsg4

Engagement Map

Quotes
Replies
Retweets
Trendsmap

Retweeters

No retweeters found
94 retweeters not shown
Free access is provided to the 8 hour timeframe for this page.

A Trendsmap Explore subscription provides full access to all available timeframes

Find out more

This account is already logged in to Trendsmap.
Your subscription allows access for one user. If you require access for more users, you can create additional subscriptions.
Please Contact us if you are interested in discussing discounts for 3+ users for your organisation, or have any other queries.