Microsoft said it has disrupted cyberattacks from a Russia-linked group called Strontium. The software giant obtained a court order allowing it to take control of the internet domain names being used by Strontium to coordinate attacks. Shortly after the FBI said it disrupted botnets run by the GRU, it announced the news.
Microsoft obtained a court order that allowed them to take control of seven internet domains that Strontium was using to conduct attacks.
Strontium was attempting to establish long-term access to the systems of its targets, provide tactical support for the physical invasion and exfiltrate sensitive information.
Businesses and the government are trying to stop a wave of attacks on Ukraine. Microsoft has been taking legal and technical action to seize infrastructure used by APT28 as part of an ongoing long-term investment started in 2016
The FBI quietly removed Russian software that allowed the country's military intelligence arm to create botnets. Strontium has been linked to attacks against US government agencies, EU elections, NGOs, non-profits and other agencies.
All Rights Reserved © 2024
