Threat actors
APT28
aptRUvia MISP
1 CVE attributed
Aliases28
APT-C-20ATK5Blue AthenaBlueDeltaFANCY BEARFROZENLAKEFancy BearFighting UrsaForest BlizzardG0007Grizzly SteppeGroup 74GruesomeLarchIRON TWILIGHTITG05Pawn StormSIG40SNAKEMACKERELSTRONTIUMSednitSofacySwallowtailT-APT-12TA422TG-4127Tsar TeamUAC-0001UAC-0028
Motivation2
EspionageState-sponsored
The Sofacy Group (also known as APT28, Pawn Storm, Fancy Bear and Sednit) is a cyber espionage group believed to have ties to the Russian government. Likely operating since 2007, the group is known to target government, military, and security organizations. It has been characterized as an advanced persistent threat.
Attributed CVEs1
| CVE | Description | Severity | EPSS | Flags | Modified |
|---|---|---|---|---|---|
| CVE-2022-38028 | Windows Print Spooler Elevation of Privilege Vulnerability | HIGH7.8 | 15%p96 | KEV | 2025-10-30 |