Cozy Bear's(APT29) Quiet Espionage Against the DNC

https://is1-ssl.mzstatic.com/image/thumb/Podcasts211/v4/16/10/f1/1610f1ba-94f9-ff90-fcf5-295f56cad680/mza_14832663211430209641.jpg/600x600bb.jpg

InfoSec Bites

HelloInfoSec

117 episodes

5 days ago

Welcome to Hello InfoSec, your ultimate hub for all things cybersecurity! Dive into our thrilling podcast series, InfoSec Bites, where we unleash deep dives into Information Security, jaw-dropping Major Security Incidents, cutting-edge Cloud Information Security, crucial Privacy topics, revolutionary Artificial Intelligence, mind-bending Quantum Computing, and so much more! Get ready to geek out with expert insights and stay ahead of the curve—hit that like button, subscribe now, and turn on notifications for fresh episodes that will blow your mind! https://www.youtube.com/@HelloInfoSec

Technology

RSS

All content for InfoSec Bites is the property of HelloInfoSec and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

https://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_episode/44370068/44370068-1758427252789-d2e44cbc0ec12.jpg

Cozy Bear's(APT29) Quiet Espionage Against the DNC

InfoSec Bites

33 minutes 3 seconds

1 week ago

Cozy Bear's(APT29) Quiet Espionage Against the DNC

The discussion in this podcast provide an extensive analysis of the Russian threat actor Cozy Bear (APT29), focusing on its sophisticated cyber espionage operations. The first source concentrates on the 2020 SolarWinds supply chain attack, detailing how the group injected the Sunburst backdoor into legitimate software updates to compromise numerous organizations, including U.S. government entities, and discusses the subsequent remediation, legal action, and lessons learned regarding supply chain security. The discussion also offers a retrospective on the 2015-2016 intrusion into the Democratic National Committee (DNC), contrasting Cozy Bear’s quiet, long-term intelligence gathering with Fancy Bear’s disruptive data dump, highlighting organizational security failures, and emphasizing the evolution of state-sponsored cyber influence operations. Collectively, it establishes Cozy Bear as a patient, strategic espionage unit linked to Russia’s SVR, known for adapting its tradecraft from spear-phishing and "living-off-the-land" techniques to complex supply chain and cloud identity compromises.