One of the most prolific cybersecurity threat cybercriminal group is Russian-speaking APT called Sofacy, also known as APT28, Fancy Bear, and Tsar Team. Our cybersecurity researchers say that this group is infamous for its spear phishing campaigns and cyberespionage activities.
The Kremlin operated group was first used against NATO countries, but since this beginning of the year, their latest targets are: the Olympic Games, the World Anti-Doping Agency (WADA), and the Court of Arbitration for Sports (CAS).
Sofacy group have many powerful tools that are designed for different target profiles. For example, in early 2017 a campaign called Dealer’s Choice targeted mostly military and diplomatic organizations and later, the hackers used two other tools, Zebrocy and SPLM, to target companies of different profiles including science and engineering centers and press services.
The common Sofacy cyber attack starts with a spear-phishing letter containing a file with a script that downloads the payload which, in most of the cases, is designed to overpass even the most robust cybersecurity solution. Remember to always opt only for the best antivirus for windows or the best antivirus for mac, depending on which OS you are using.
Only a good cybersecurity solution will protect you against Sofacy attacks because they are well known for finding and exploiting zero-day vulnerabilities and using those exploits to deliver the payload. They also maintain a high level of operational security and are focused on making their malware harder to detect and investigate.
To stay safe and secured against this kind of groups and their cyber attacks, your security system needs not only an advanced cybersecurity solution but also an endpoint detection and response system. Such endpoint and response systems can be recommended by cybersecurity specialists just after their run some advance cybersecurity tests to your company network, like penetration tests, and ethical hacking tests.
This kind of tests must be made least one time per year because cyber security threats evolve and you must find and fix any cybersecurity flaws as soon as they are discovered.
Extra advice: If your business is a 100% online business consider using only cyber-secured web hosting services.