'Turla' spies have been stealing documents from foreign ministries in Eastern Europe, researchers find
Turla has a knack for rewriting code and using it to steal state secrets.
Russian intelligence-backed hackers go after Armenian embassy website with new code
When subtlety rather than brute force is required, analysts say Moscow calls on Turla.
Russian hackers have been mooching off existing OilRig infrastructure
Russian-linked hackers known as the Turla group have been piggybacking on Iranian hackers’ tools and infrastructure for years now to run their own attacks.
Cozy Bear kept moving after 2016 election, ESET says
The group, also known as APT29 and the Dukes, was "able to fly under the radar for many years while compromising high-value targets, as before," according to ESET.
Russia’s Turla group goes trolling with code labeled “TrumpTower”
Kaspersky found that the group also referred to 'Rocket Man,' apparently a reference to Kim Jong Un.
What happens when one APT hijacks another’s infrastructure
Servers, domains and other infrastructure are a contested resource like any other on the internet.