Russian Hackers Exploit Cloudflare Tunnels

[Insikt Group experts](https://www.recordedfuture.com/research/insikt-group) have analyzed the run against Ukraine, which is being sponsored by the state-sponsored BlueAlpha. Their analysis shows that **members of the group are acting under a directive from the [Russian FSB](https://cyberdefence24.pl/armia-i-sluzby/nieudana-ucieczka-na-bialorus-czlonek-fsb-zlapany)**. The attacks are said to be consistent with the erstwhile activity of known APT entities, including: [Gamaredon](https://cyberdefence24.pl/strona-tagow/gamaredon) or [Hive0051](https://socprime.com/blog/russian-state-sponsored-hive0051-aka-uac-0010-gamaredon-attack-detection-adversaries-apply-an-aggressive-infection-approach-leveraging-three-malware-branches/).