Skip to content
Auto-CTI
Back to all actors

Russian state-sponsored APT

Unknown Active
Mentions
3
First seen
09 Jun 2026
Last seen
13 Jul 2026

Relevant to you · Relevant

Threat focus:
espionage / apt
Sector / region:
ManufacturingDACH

Origin

Unattributed

Profile

The Russian state-sponsored APT targets network devices such as routers to gain access. Official warnings emphasize the ongoing threat. Recently, a WinRAR vulnerability was exploited to attack Ukrainian organizations. This demonstrates the continued focus on Ukraine and the use of vulnerabilities in widely used software.

Affected vendors

Rarlab

Targeted regions

Eastern Europe

Targeted countries

UAUkraine

Linked CVEs

Related actors

Share a CVE, technique or malware with this actor.

Activity (8 weeks)

22
23
24
25
26
27
28
29

Recent activity

ESC