all InfoSec news
BlueCharlie, Previously Tracked as TAG-53, Continues to Deploy New Infrastructure in 2023
Malware Analysis, News and Indicators - Latest topics malware.news
Insikt Group has been tracking the threat activity group BlueCharlie, associated with the Russia-nexus group Callisto/Calisto, COLDRIVER, and Star Blizzard/SEABORGIUM. BlueCharlie, a Russia-linked threat group active since 2017, focuses on information gathering for espionage and hack-and-leak operations. BlueCharlie has evolved its tactics, techniques, and procedures (TTPs) and built new infrastructure, indicating sophistication in adapting to public disclosures and improving operations security. While specific victims are unknown, past targets include government, defense, education, political sectors, NGOs, journalists, and think tanks.
Breakdown …
blizzard bluecharlie calisto callisto coldriver deploy espionage gathering hack information information gathering infrastructure insikt group leak malware analysis nexus operations procedures russia seaborgium tactics tag tag-53 techniques threat threat group tracking ttps