https://securityaffairs.com/154460/apt/apt29-targets-embassies-winrar-flaw.html
APT29 group exploited WinRAR 0day in attacks against embassies
Nov 20, 2023 - Russia-linked cyberespionage group APT29 has been observed leveraging the CVE-2023-38831 vulnerability in WinRAR in recent attacks.
apt29groupexploitedwinrar0day
https://thehackernews.com/2024/12/apt29-hackers-target-high-value-victims.html?version=meter+at+null
APT29 Hackers Target High-Value Victims Using Rogue RDP Servers and PyRDP
APT29 exploits rogue RDP servers with PyRDP, targeting 200 victims and stealing data undetected.
high value
https://securityaffairs.com/149103/apt/apt29-microsoft-teams-phishing-attacks.html
Russian APT29 conducts phishing attacks through Microsoft Teams
Aug 3, 2023 - Russia-linked APT29 group targeted dozens of organizations and government agencies worldwide with Microsoft Teams phishing attacks.
phishing attacksrussianapt29conductsmicrosoft
https://thehackernews.com/2024/01/microsoft-warns-of-widening-apt29.html?version=meter+at+null
Microsoft Warns of Widening APT29 Espionage Attacks Targeting Global Orgs
Microsoft confirms Russian hackers who breached them in November are now targeting more organizations.
microsoftwarnswideningapt29espionage
https://securityaffairs.com/133409/apt/apt29-google-drive-dropbox.html
Russian APT29 relies on Google Drive, Dropbox to evade detection
Jul 19, 2022 - Russia-linked threat actors APT29 are using the Google Drive cloud storage service to evade detection.......
on googlerussianapt29drivedropbox
https://thehackernews.com/2024/01/microsoft-warns-of-widening-apt29.html
Microsoft Warns of Widening APT29 Espionage Attacks Targeting Global Orgs
Microsoft confirms Russian hackers who breached them in November are now targeting more organizations.
microsoftwarnswideningapt29espionage
https://thehackernews.com/2024/12/apt29-hackers-target-high-value-victims.html?m=1
APT29 Hackers Target High-Value Victims Using Rogue RDP Servers and PyRDP
APT29 exploits rogue RDP servers with PyRDP, targeting 200 victims and stealing data undetected.
high value
https://thehackernews.com/2022/11/apt29-exploited-windows-feature-to.html
APT29 Exploited a Windows Feature to Compromise European Diplomatic Entity Network
Russia-linked APT29 hackers has been found leveraging a "lesser-known" Windows feature called "Credential Roaming" in attack on European diplomatic.
apt29exploitedwindowsfeature
https://www.techtarget.com/searchsecurity/news/366609225/Russias-APT29-using-spyware-exploits-in-new-campaigns
Russia's APT29 using spyware exploits in new campaigns | TechTarget
Russia's APT29, the threat group behind the supply chain attack against SolarWinds, is exploiting former zero-day flaws.
new campaignsrussiaapt29usingspyware
https://thehackernews.com/2025/04/apt29-deploys-grapeloader-malware.html?ref=cybersecsentinel.com
APT29 Deploys GRAPELOADER Malware Targeting European Diplomats Through Wine-Tasting Lures
APT29 deployed GRAPELOADER to target European diplomats in early 2025, enhancing stealth and persistence.
wine tastingapt29deploysmalwaretargeting
https://www.bitdefender.com/en-us/blog/hotforsecurity/russia-based-apt29-group-exploited-information-exchange-systems-to-attack-governments
Russia-based APT29 Group Exploited Information Exchange Systems to Attack Governments
Russia-linked APT29 group was recently spotted exploiting legitimate European information exchange systems to launch attacks against government entities.
information exchange systemsrussiabasedapt29group
https://www.paloaltonetworks.com/blog/tag/apt29-ja/?lang=ja
APT29 Blogs | Palo Alto Networks
Read the latest blogs and insights about APT29 from Palo Alto Networks experts.
palo altoapt29blogsnetworks