Russia was in the news on Wednesday, claiming to have made a secure coronavirus vaccine for her defense ministry. The news has come as a world of hope, as all countries fight the pandemic. Yet fresh leaks coming out of Russia are troubling. A hacking group that is suspected to act as part of Russian intelligence services is targeting organizations involved in the production of Covid-19 vaccines, the U.S., British and Canadian governments said on Thursday.
The threat group , known as APT29, has been targeting organizations worldwide, the UK’s National Cyber Security Center (NCSC) said in a report. The APT29, also called “the Dukes” or “Cozy Bear,” is using a range of methods and tactics, including spear-phishing and custom malware such as “WellMess” and “WellMail,” the NCSC has said.
Partners at the Canadian Communication Security Establishment (CSE), the United States Department for Homeland Security ( DHS), the Communications Infrastructure Protection Agency (CISA), and the National Security Agency (NSA) also endorse this evaluation. APT29 ‘s malicious activity campaign is underway to steal valuable intellectual property, the advisory said, primarily against business, diplomatic, think-tank, healthcare and energy goals. “It is completely unacceptable that the Russian Intelligence Services are targeting those working to combat the coronavirus pandemic,” the UK Foreign Secretary, Dominic Raab, said in a statement.