Portsuppe

APT29 Uses WINELOADER to Target German Political Parties

Mandiant Blog·older·Reputable

Written by: Luke Jenkins, Dan Black Executive Summary In late February, APT29 used a new backdoor variant publicly tracked as WINELOADER to target German political parties with a CDU-themed lure. This is the first time we have seen this APT29 cluster target political parties, indicating a possible area of emerging operational focus beyond the typical targeting of diplomatic missions. Based on the SVR’s responsibility to collect political intelligence and this APT29 cluster’s historical targeting

Categories cybersecurity · government-security · unknown-it-category-15
Original source / advisory
Published
3/22/2024, 12:00:00 AM
Fetched
6/7/2026, 6:19:33 AM
Trust
reputable · 80/100
Language
en