Nov 16, 2018

Cozy Bear hackers may be impersonating State Department

Photo: Mandel Ngan/AFP/Getty Images

Cozy Bear, hackers who the U.S. and other governments believe to be Russian intelligence, appears to be impersonating the State Department in a new hacking campaign that's been observed attacking several sectors. FireEye, a cybersecurity company, first made the announcement on Twitter.

The big picture: It's nothing new for Cozy Bear to impersonate government officials, or anyone else who could lure people into downloading a file. That doesn't make it less aggressive — or less dangerous — for them to use the State Department to accomplish their goal.

FireEye is not making a firm attribution to Cozy Bear at this time. It's just saying the attacks show similarities to Cozy Bear's toolkit and techniques.

The targets spanned different sectors: defense, law enforcement, local government, media, pharmaceuticals, think tanks, transportation and the public sector. They appear to be the same or similar targets to a 2016 campaign associated with Cozy Bear.

What they're saying: "FireEye is continuing to investigate the true intention of the campaign," said Nick Carr, senior manager of adversary methods at FireEye.

Editor's note: The headline and story have been corrected to show that the Russian hacking group in question is Cozy Bear (not Fancy Bear).

Go deeper

There are warning signs that Nevada could be Iowa all over again

Former Sen. Harry Reid (D) lines up to cast an early vote for the upcoming Nevada Democratic presidential caucus. Photo: Ethan Miller/Getty Images

The alarms are increasingly sounding over Nevada's Democratic caucus, which is just five days away.

Why it matters: Similar issues to the ones that plagued Iowa's caucus seem to be rearing their ugly heads, the WashPost reports.

China tries to contain coronavirus, as Apple warns of earnings impact

Data: The Center for Systems Science and Engineering at Johns Hopkins, the CDC, and China's NHC; Note: China refers to mainland China and the Diamond Princess is the cruise ship offshore Yokohama, Japan. Map: Danielle Alberti/Axios

As China pushes to contain the spread of the novel coronavirus — placing around 780 million people under travel restrictions, per CNN — the economic repercussions continue to be felt globally as companies like Apple warn of the impact from the lack of manufacturing and consumer demand in China.

The big picture: COVID-19 has now killed at least 1,775 people and infected more than 70,000 others, mostly in mainland China. There are some signs that new cases are growing at a slower rate now, although the World Health Organization said Monday it's "too early to tell" if this will continue.

Go deeperArrowUpdated 4 hours ago - Health

Apple will miss quarterly earnings estimates due to coronavirus

Apple CEO Tim Cook

Apple issued a rare earnings warning on Monday, saying it would not meet quarterly revenue expectations due to the impact of the coronavirus, which will limit iPhone production and limit product demand in China.

Why it matters: Lots of companies rely on China for production, but unlike most U.S. tech companies, Apple also gets a significant chunk of its revenue from sales in China.