ADVERTISEMENT

The world’s most dangerous state-sponsored hacker groups

state sponsored hackers featured img
Edvardas Mikalauskas
Edvardas Mikalauskas Senior Researcher
Feb 16, 2021 Updated: 10 December 2021 8 min read

What’s the deal with the cute names, anyway?

Cozy Bear (APT29)

cozy bear APT29 hacker's group logo
(Image: CrowdStrike)
  • Allegiance: Russia
  • Active since: 2008
  • Best known for: 2015 attack on the Pentagon, FireEye hack (allegedly), SolarWinds hack (allegedly), COVID-19 vaccine data theft
In fact, if expert suspicions are correct, Cozy Bear might prove the most dangerous state-sponsored hacker group to wreak havoc on companies and government institutions in 2020.
What’s even worse, the breach went undetected for months, and the attackers could have exfiltrated data in the highest echelons of the US government, including the US military and the White House.

Lazarus Group (APT38)

lazarus APT38 hacker group logo
(Image: Russian Council)
  • Allegiance: North Korea
  • Active since: 2010
  • Best known for: Operation Troy, WannaCry attack, COVID-19 vaccine data theft
Since the unit’s inception in 2010, Lazarus’ cyberattacks have become increasingly sophisticated and destructive, mostly targeting financial institutions such as banks and fintech companies.

Double Dragon (APT41)

Double dragon APT41 hacker's group logo
(Image: FireEye)
  • Allegiance: China
  • Active since: 2012
  • Best known for: Massive global hacking campaign in 2020
ADVERTISEMENT
However, espionage is not the group’s only forte: it’s not called Single Dragon for a reason.
APT 41 members picture in an FBI wanted poster
(Image: FBI/DOJ)

Fancy Bear (APT28)

Fancy bear APT28 hacker's group logo
(Image: CrowdStrike)
  • Allegiance: Russia
  • Active since: 2005
  • Best known for: 2016 DNC and Podesta leaks, attacks on anti-doping agencies in 2019
Their usual MO involves using email domains to trick their would-be victims into believing that the elaborate phishing emails produced by the group are coming from legitimate sources.

Helix Kitten (APT34)

Helix Kitten APT34 hacker's group logo
(Image: CrowdStrike)
  • Allegiance: Iran
  • Active since: 2007
  • Best known for: The 2013 New York Dam hack, attacks on the Australian Parliament House in 2019
  • Surf the web anonymously with a VPN. Check out our pages for VPN coupons - maybe you'll find a sweeter deal there.
  • Alternatively, you can check out our post for the best VPN deals.
  • Keep your PC well protected against malware, simply check out our pages for Bitdefender coupons and Avast coupons and grab the best discounts.

More great CyberNews stories:

ADVERTISEMENT