Russian Threat Actors - The CyberSignal

Minimalist white line art of a digital brain silhouette with a white lightning bolt through the center, overlaid on a solid charcoal gray background.

Security Research

Dutch Intelligence: Russia Weaponizing AI for Cyberattacks on Europe

MIVD annual assessment warns Moscow is using artificial intelligence to target critical infrastructure across the continent as part of a broader "great power" pressure campaign. THE HAGUE, NL — The Dutch Military Intelligence and Security Service (MIVD) has issued a strategic warning regarding the escalation of Russian cyber operations,

23 Apr 2026

Minimalist white line art diagram of a 3-step pipeline: an open door leading to a virus icon leading to a bag of money, on a solid charcoal obsidian background.

Threat Actors

RAMP Leak Exposes Russia's Ransomware Pipeline: 7.7K Users, 340K IPs, US Gov Targets

Leaked database reveals a structured cybercrime market connecting access brokers to 14 RaaS affiliates targeting US government and finance sectors in 40% of listings. MOSCOW / WASHINGTON, D.C. — A massive leak of the RAMP (Ransomware Access and Market Place) database has pulled back the curtain on Russia’s most structured

23 Apr 2026

Minimalist vector art of a power pylon with red circuit lines, representing a cyberattack on Swedish critical infrastructure.

National Security

Stockholm Attributes 2025 Power Plant Attack to Pro-Russian Cyber Syndicate

Swedish authorities have declassified details of a thwarted "destructive" cyberattack against a thermal power plant, warning of a dramatic escalation in hybrid warfare targeting European energy grids. STOCKHOLM — The Swedish government has formally attributed a sophisticated 2025 cyberattack against a domestic thermal power plant to a pro-Russian hacking

15 Apr 2026

Editorial illustration of a Wi-Fi router with a red warning icon diverting a data stream, representing the APT28 DNS hijacking campaign and the compromise of home networking hardware.

Cyber Attacks

UK and Allies Disrupt Global DNS Hijacking Campaign Linked to Russia’s APT28

An international coalition of security agencies, led by the UK’s National Cyber Security Centre (NCSC) and the FBI, has disrupted a major cyber-espionage operation targeting thousands of home and small-office routers. The campaign, attributed to the Russian military intelligence unit known as APT28 (also documented as Fancy Bear or

07 Apr 2026