[clamav-users] Grizzly Steppe
Ralf Hildebrandt
Ralf.Hildebrandt at charite.de
Wed Jan 4 15:33:06 UTC 2017
* Andrew McGrath <andrew at checkout51.com>:
> I'm being asked a question by our security team that I am struggling
> to answer. The question is "Does ClamAV detect Grizzly Steppe?".
>
> I've hunted around the archives, support pages and google, but do not
> see any discussion about this, could anyone comment?
They probably mean the exploit code used in operation Grizzly Steppe
ATP 29, APT 28, Cozybear, Fancybear, Sandworm, Sofacy etc.
https://www.dhs.gov/news/2016/12/30/executive-summary-grizzly-steppe-findings-homeland-security-assistant-secretary
--
Ralf Hildebrandt Charite Universitätsmedizin Berlin
ralf.hildebrandt at charite.de Campus Benjamin Franklin
http://www.charite.de Hindenburgdamm 30, 12203 Berlin
Geschäftsbereich IT, Abt. Netzwerk fon: +49-30-450.570.155
More information about the clamav-users
mailing list