EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • Pro-Russian Cyberespionage Campaign Targets Tajikistan
    • Home
    • Cybercrime
    • Pro-Russian Cyberespionage Campaign Targets Tajikistan

    Pro-Russian Cyberespionage Campaign Targets Tajikistan

    Written by
    The Editorial Team
    05.26.25
    Cybercrime
    01
    MIN
    Pro-Russian Cyberespionage Campaign Targets Tajikistan
    Pro-Russian Cyberespionage Campaign Targets Tajikistan
    Pro-Russian Cyberespionage Campaign Targets Tajikistan
    Image Dark web: from the theft of customer databases to the resale of access, anatomy of the data available
    Cybercrime
    03.02.26 Cybercrime
    Next article
    Dark web: from the theft of customer databases to the resale of access, anatomy of the data available
    Read
    05
    MIN
    Image The National File of Bank Accounts Hacked: 1.2 Million Accounts Exposed
    Cybercrime
    02.19.26 Cybercrime
    Next article
    The National File of Bank Accounts Hacked: 1.2 Million Accounts Exposed
    Read
    01
    MIN
    Image Ransomware: Russian Phobos Affiliate Appears Before a French Court
    Cybercrime
    02.17.26 Cybercrime
    Next article
    Ransomware: Russian Phobos Affiliate Appears Before a French Court
    Read
    01
    MIN
    Image A cyberespionage operation compromised 37 governments worldwide
    Cybercrime
    02.06.26 Cybercrime
    Next article
    A cyberespionage operation compromised 37 governments worldwide
    Read
    02
    MIN
    The group TAG-110, linked to the Russian intelligence entity APT28, infiltrated IT systems of government and academic institutions in the Central Asian country.

    Insikt Group, a cybersecurity research unit of Recorded Future, published a report on May 22, 2025, detailing a Russian cyberespionage operation targeting Tajikistan. The group TAG-110, directly connected to APT28—a Russian military intelligence entity also known as “BlueDelta”—is believed to have carried out the attack in January and February 2025.

    The hackers infiltrated IT systems of government, university, and research institutions in Tajikistan by sending phishing emails containing fake documents related to government or national security topics. Once access was gained, they installed espionage tools such as Cherryspie, Logpie, and other customized malware.

    According to Insikt Group, TAG-110 has been conducting cyber operations in Central Asia since 2021 and has also targeted organizations in India, Israel, Mongolia, and Ukraine.

    The Editorial Team
    05.26.25
    Articles by the same author:
    1
    03.03.26 Cyber stability
    NATO Authorizes the Use of iPhones for Classified Data
    Read
    02
    MIN
    2
    03.03.26 Cyber +
    The United States Exclude Anthropic from Federal Agencies
    Read
    02
    MIN
    3
    02.19.26 Fraud
    Backdoor Identified on Android Tablets
    Read
    01
    MIN
    4
    02.19.26 Cybercrime
    Canada: Quebec School Service Centre Hit by Cyberattack
    Read
    01
    MIN
    Image Dark web: from the theft of customer databases to the resale of access, anatomy of the data available
    Cybercrime
    03.02.26 Cybercrime
    Next article
    Dark web: from the theft of customer databases to the resale of access, anatomy of the data available
    Read
    05
    MIN
    Image The National File of Bank Accounts Hacked: 1.2 Million Accounts Exposed
    Cybercrime
    02.19.26 Cybercrime
    Next article
    The National File of Bank Accounts Hacked: 1.2 Million Accounts Exposed
    Read
    01
    MIN
    Image Ransomware: Russian Phobos Affiliate Appears Before a French Court
    Cybercrime
    02.17.26 Cybercrime
    Next article
    Ransomware: Russian Phobos Affiliate Appears Before a French Court
    Read
    01
    MIN
    Image A cyberespionage operation compromised 37 governments worldwide
    Cybercrime
    02.06.26 Cybercrime
    Next article
    A cyberespionage operation compromised 37 governments worldwide
    Read
    02
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.