Skip to main content
See every side of every news story
Get Started
SubscribeLogin
Published loading...Updated

Amazon Disrupts Russian APT29 Cyber Espionage with Microsoft, Cloudflare

Summary by WebProNews
In a significant blow to cyber espionage efforts, Amazon.com Inc. has dismantled a sophisticated hacking operation linked to Russia’s APT29 group, also known as Midnight Blizzard or Cozy Bear. The campaign exploited compromised websites to target Microsoft 365 users, aiming to steal credentials through deceptive authentication flows. According to details shared by Amazon’s threat intelligence team, the attackers used “watering hole” tactics, inj…
DisclaimerThis story is only covered by news sources that have yet to be evaluated by the independent media monitoring agencies we use to assess the quality and reliability of news outlets on our platform. Learn more here.

4 Articles

The Cyber ExpressThe Cyber Express

Russian Spies Turn Everyday Websites Into Watering Holes

Maria thought she was just browsing her favorite tech news site during her lunch break. She clicked on an article, waited for it to load and then suddenly found herself on what looked like a Cloudflare security verification page. It seemed legitimate—the kind of thing she'd seen dozens of times before when websites were checking for suspicious traffic. She was about to enter her credentials when something made her pause. That moment of hesitatio…

Read Full Article
The Record by Recorded FutureThe Record by Recorded Future
Reposted by
unsafe.shunsafe.sh

Amazon shuts down watering hole attack attributed to Russia’s APT29 hacking group

In October 2024, Amazon disrupted another APT29 operation that attempted to use phishing domains impersonating AWS.

Read Full Article
WebProNewsWebProNews

Amazon Disrupts Russian APT29 Cyber Espionage with Microsoft, Cloudflare

In a significant blow to cyber espionage efforts, Amazon.com Inc. has dismantled a sophisticated hacking operation linked to Russia’s APT29 group, also known as Midnight Blizzard or Cozy Bear. The campaign exploited compromised websites to target Microsoft 365 users, aiming to steal credentials through deceptive authentication flows. According to details shared by Amazon’s threat intelligence team, the attackers used “watering hole” tactics, inj…

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • There is no tracked Bias information for the sources covering this story.

Factuality 

To view factuality data please Upgrade to Premium

Ownership

To view ownership data please Upgrade to Vantage

WebProNews broke the news in on Tuesday, September 2, 2025.
Sources are mostly out of (0)

Similar News Topics

Microsoft icon

Microsoft

Amazon icon

Amazon

Espionage icon

Espionage

Russia icon

Russia

News
For You
SearchBlindspotLocal