(Cyber) Intelligence @ S2 Grupo #intelligence #cybint @s2grupo @securityartwork
Joined July 2019
- Tweets 2,096
- Following 439
- Followers 1,889
- Likes 1,811
93 Photos and videos
Check out our new book, now available: Cyber GRU. Russian military intelligence in cyberspace lab52.io/blog/new-book-now-a… #Russia #GRU
4
19
50
4,684
3
115
"I did write my senior thesis on artificial intelligence, a hot topic at the time". Brian Kernighan, 1964. 👇👇👇
Empezando la lectura. Muy buena pinta, como no podía ser de otra forma siendo quien es el autor. Y una dedicatoria preciosa a dmr!!! #UNIX
1
4
435
An interesting report about the cybersecurity maturity of all sectors of high criticality in EU: #ENISA NIS360 enisa.europa.eu/enisa-nis360…
1
265
“Those who do not understand Unix are condemned to reinvent it, poorly.” THIS!! 👇👇👇
Empezando la lectura. Muy buena pinta, como no podía ser de otra forma siendo quien es el autor. Y una dedicatoria preciosa a dmr!!! #UNIX
1
4
375
📡 El espectro de radiofrecuencia es ya un dominio estratégico.
Interferencias, spoofing o guerra electrónica están ampliando el escenario de amenazas más allá del ciber tradicional.
@LAB52io analiza tendencias clave 👇
hubs.la/Q04hS-MB0
1
1
5
198
Kremlin appoints cyber executive with alleged GRU ties to Security Council role therecord.media/andrei-kozlo… @TheRecord_Media
1
190
A Systematic Literature Review on Machine Learning for Intrusion Detection Systems preprints.org/frontend/manus…
2
1
275
Russian #GRU 👇
Sandworm Activity in Industrial Environments: What the Data Reveals
Nozomi
Sandworm is a Russian state-sponsored group also tracked as APT44, Seashell Blizzard, and Voodoo Bear.
nozominetworks.com/blog/sand…
@nozominetworks
1
355
Check out our new post!! Trends in Radio Frequency Spectrum Activity and Its Impact on the Geopolitical Landscape lab52.io/blog/trends-in-radi… #SIGINT
7
9
580
Surprisingly, North Korea is residual (less than 10 appearances). Although this may be a fact in physical world, for sure this is not the trend in cyberspace, where North Korea is an active threat actor targeting Spain, among other countries :)
1. Russo-Ukrainian conflict, which can be considered a core threat.
2. Spain NATO allies: United Kingdom, Germany, France...
3. Local Spanish threats: Magreb (Morocco, Argelia) and Sahel
4. Global critical regions: Middle East (Iran, Israel...) and Far East (China, India...).
4
546
1. Russo-Ukrainian conflict, which can be considered a core threat.
2. Spain NATO allies: United Kingdom, Germany, France...
3. Local Spanish threats: Magreb (Morocco, Argelia) and Sahel
4. Global critical regions: Middle East (Iran, Israel...) and Far East (China, India...).
An interesting report (in Spanish). Using Claude for a quick country count (apart from Spain, of course), it is easy to identify four main groups of interest for #Spain 🧵:
5
943
An interesting report (in Spanish). Using Claude for a quick country count (apart from Spain, of course), it is easy to identify four main groups of interest for #Spain 🧵:
El @dsn ha publicado su Informe Anual de Seguridad Nacional 2025, disponible aquí: dsn.gob.es/es/actualidad/sal…
1
7
1,485
The State in Ransomware: Evidence of Concentration and Targeting Patterns among Russian-Affiliated Groups acigjournal.com/The-State-in… #malware #ransomware
3
10
789
For us, when handling the incident seven years ago, the tradecraft was impressive!!!
Some not uninteresting seven-year old intelligence on SVR malware that uses roughly a bajillion layers worth of obfuscation, encryption, anti-analysis techniques, and execution guardrails. Does show off some significant offsec discipline to avoid reusing IOCs.
10
2,275
LAB52 retweeted
『These pieces of malware were obtained in 2019, three years before the aforementioned publication, and were not disclosed publicly for reasons of exploitation of the intelligence obtained.』
EasterBunny: advanced espionage artifacts attributed to APT29
lab52.io/blog/easterbunny/
1
3
643
Yes, it is 🤣🤣
May 7
Lab52 released a paper on APT29 and suspected state-sponsored computer espionage by the Russian Federation targeting Spain
I was going to read the paper, but then I saw it's 142 pages
This is a book bro wtf
26
5,128
For sure, they'll learn how to use windows properly...oh, wait!
May 7
🔎🇷🇺Inside Russia's elite Bauman University, a secret department trains the GRU's next-gen hackers, saboteurs & spies. Now, 2,000 leaked docs expose how its graduates feed the units behind Russia's cyberattacks, election interference, and NATO sabotage. vsquare.org/welcome-to-the-g…
1
4
1,164
LAB52 retweeted
EasterBunny: advanced espionage artifacts attributed to APT29
Lab 52 | S2Grupo
lab52.io/blog/easterbunny/
@LAB52io
3
10
24
1,444