APT 28: At the Center of the Storm

On Dec. 29, 2016, the Department of Homeland Security (DHS) and Federal Bureau of Investigation (FBI) released a Joint Analysis Report confirming FireEye’s long held public assessment that the Russian government likely sponsors the groups that we track as Advanced Persistent Threat (APT) 28 and APT29. We have tracked and profiled these groups through multiple investigations, endpoint and network detections, and continuous monitoring, allowing us to understand the groups’ malware, operational changes and motivations. This intelligence has been critical to protecting and informing our clients and exposing this threat.

Join FireEye in discussing our latest report on the Russia-based cyber threat group APT28 - APT28: At the Center of the Storm. FireEye first publicly announced that the Russian government likely sponsors APT28 in a report released in October 2014. APT28 has pursued military and political targets in the U.S. and globally, including U.S. political organizations, anti-doping agencies, NGOs, foreign and defense ministries, defense attaches, media outlets, and high profile government and private sector entities.

Since at least 2007, APT28 has conducted operations using a sophisticated set of malware that employs a flexible, modular framework allowing APT28 to consistently evolve its toolset for future operations. APT28’s operations closely align with Russian military interests and the 2016 breaches, and pursuant public data leaks demonstrate the Russian government's wide-ranging approach to advancing its strategic political interests.

Register today to gain deeper insights into this threat group!  

Event Registration

To start registration, please enter your details below and click Continue.


  On-Demand Anytime
Time:  On-Demand Anytime
Duration:  60 minutes

Featured Speakers
Policy Analyst, Cybersecurity Initiative, New America
Sr. Threat Analyst, FireEye
Analysis Manager, FireEye