Researchers Dissect Tool Used by Infamous Russian Hacker Group https://www.securityweek.com/researchers-dissect-tool-used-infamous-russian-hacker-group
Sednit: What’s going on with Zebrocy? https://www.welivesecurity.com/2018/11/20/sednit-whats-going-zebrocy/
Accenture: Russian hackers using Brexit talks to disguise phishing lures November 29, 2018 https://www.cyberscoop.com/apt28-brexit-phishing-accenture/
Russia-Linked Sofacy Debuts Fresh Zebrocy Malware Variant December 18, 2018 https://threatpost.com/russia-linked-sofacy-debuts-fresh-zebrocy-malware-variant/140064/
GreyEnergy’s overlap with Zebrocy January 24, 2019 https://securelist.com/greyenergys-overlap-with-zebrocy/89506/
Sofacy’s Zepakab Downloader Spotted In-The-Wild January 29, 2019 https://blog.yoroi.company/research/sofacys-zepakab-downloader-spotted-in-the-wild/
Zebrocy Operators Also Look for Browser and Email Databases May 22, 2019 https://www.bleepingcomputer.com/ne...rs-also-look-for-browser-and-email-databases/ ESET: A journey to Zebrocy land
Zebrocy’s Multilanguage Malware Salad June 3, 2019 https://securelist.com/zebrocys-multilanguage-malware-salad/90680/
Political targets at risk as Fancy Bear returns with refreshed backdoor malware The threat group’s attack chain is now even heavier with a string of malicious payloads September 24, 2019 https://www.zdnet.com/article/polit...bear-returns-with-refreshed-backdoor-malware/ ESET: No summer vacations for Zebrocy
Russia-linked APT28 targets govt bodies with fake NATO training docs September 23, 2020 https://securityaffairs.co/wordpress/108635/cyber-warfare-2/apt28-nato-training-docs.html QuoIntelligence: APT28 Delivers Zebrocy Malware Campaign using NATO Theme as Lure
Russian APT28 Hackers Using COVID-19 as Bait to Deliver Zebrocy Malware December 9, 2020 https://thehackernews.com/2020/12/russian-apt28-hackers-using-covid-19-as.html Intezer: A Zebra in Gopher's Clothing: Russian APT Uses COVID-19 Lures to Deliver Zebrocy