ENERGETIC BEAR (Threat Actor)

SYMBOL	COMMON_NAME	aka. SYNONYMS

ENERGETIC BEAR (Back to overview)

aka: ALLANITE, ATK6, BERSERK BEAR, BROMINE, Blue Kraken, CASTLE, Crouching Yeti, DYMALLOY, Dragonfly, G0035, Ghost Blizzard, Group 24, Havex, IRON LIBERTY, ITG15, Koala Team, TG-4192

A Russian group that collects intelligence on the energy industry.

Associated Families

There are currently no families associated with this actor.

References

2022-04-05 ⋅ Government of United Kingdom ⋅ Government of United Kingdom
Russia's FSB malign activity: factsheet
ENERGETIC BEAR

2019-07-24 ⋅ Secureworks ⋅ CTU Research Team
Resurgent Iron Liberty Targeting Energy Sector
ENERGETIC BEAR TeamSpy Crew

2019-01-01 ⋅ Council on Foreign Relations ⋅ Cyber Operations Tracker
Dymalloy
ENERGETIC BEAR

2019-01-01 ⋅ MITRE ⋅ MITRE ATT&CK
Group description: Dragonfly
ENERGETIC BEAR

2019-01-01 ⋅ Council on Foreign Relations ⋅ Cyber Operations Tracker
Crouching Yeti
ENERGETIC BEAR

2019-01-01 ⋅ Dragos ⋅ Dragos
Adversary Reports
ALLANITE APT33 CHRYSENE ENERGETIC BEAR Lazarus Group Sandworm

2018-03-01 ⋅ Dragos ⋅ Dragos
INDUSTRIAL CONTROL SYSTEM THREATS
APT33 CHRYSENE ENERGETIC BEAR Lazarus Group Sandworm

2017-11-02 ⋅ RiskIQ ⋅ Yonathan Klijnsma
New Insights into Energetic Bear’s Watering Hole Cyber Attacks on Turkish Critical Infrastructure
ENERGETIC BEAR

2017-10-20 ⋅ Symantec ⋅ Security Response Attack Investigation Team
Dragonfly: Western energy sector targeted by sophisticated attack group
ENERGETIC BEAR

2017-10-20 ⋅ Symantec ⋅ Critical Attack Discovery and Intelligence Team
Dragonfly: Western energy sector targeted by sophisticated attack group
Dorshel Goodor Heriplor Karagany Listrix ENERGETIC BEAR

2017-08-07 ⋅ Independent.ie ⋅ Cathal McMahon
'State-sponsored' hackers targeted EirGrid electricity network in 'devious attack'
ENERGETIC BEAR

2017-06-13 ⋅ Dragos ⋅ Dragos
CRASHOVERRIDE Analysis of the Threat to Electric Grid Operations
ENERGETIC BEAR

2017-05-01 ⋅ Kaspersky Labs ⋅ Kaspersky
Crouching Yeti (Energetic Bear) Malware
ENERGETIC BEAR

2017-01-18 ⋅ Reuters ⋅ Oleg Vukmanovic, Pavel Polityuk, Stephen Jewkes
Ukraine's power outage was a cyber attack: Ukrenergo
ENERGETIC BEAR

2016-01-22 ⋅ SANS ⋅ Nell Nelson
The Impact of Dragonfly Malware on Industrial Control Systems
ENERGETIC BEAR

2014-10-27 ⋅ Netresec ⋅ Erik Hjelmvik
Full Disclosure of Havex Trojans
ENERGETIC BEAR

2014-07-07 ⋅ Symantec ⋅ Security Response
Dragonfly: Cyberespionage Attacks Against Energy Suppliers
Karagany ENERGETIC BEAR

2014-07-07 ⋅ Symantec ⋅ Symantec Security Response
Dragonfly: Cyberespionage Attacks Against Energy Suppliers
ENERGETIC BEAR

2014-03-13 ⋅ Threatpost ⋅ 2014-03-13
Energy Watering Hole Attack Used LightsOut Exploit Kit
ENERGETIC BEAR

2014-01-22 ⋅ SC Magazine ⋅ Steve Gold
Iran and Russia blamed for state-sponsored espionage
ENERGETIC BEAR Magic Kitten

Credits: MISP Project