Russian Hackers Exploit Email and VPN Vulnerabilities for Cyberespionage

Russian cybercriminals, identified as APT28 (also known as BlueDelta, Fancy Bear, or Forest Blizzard), linked to the GRU 85th Main Special Service Center, Military Unit 26165, have been conducting a cyberespionage campaign since 2022. This campaign targets Western logistical entities and technology companies involved in aiding Ukraine. The attackers are exploiting vulnerabilities in email systems and VPNs to spy on logistical operations.