CyberNews: 07/09/2025 Edition
Today’s roundup
Summary
A phishing campaign codenamed Operation BarrelFire, attributed to Russian-linked threat actor Noisy Bear, has targeted Kazakhstan's energy sector since April 2025. The attacks focus on employees of state-owned energy firm KazMunaiGas (KMG), using malicious emails to deploy malware. Cybersecurity firm Seqrite Labs reported the group's infrastructure overlaps with previous Russian APT operations. The campaign aims to infiltrate critical infrastructure, potentially enabling espionage or disruptive actions. Noisy Bear’s tactics highlight ongoing threats to energy networks in geopolitical hotspots, though specific impact details remain undisclosed.