{"description":"\u3010\u8a33\u3011\u30ed\u30b7\u30a2\u306eAPT29\u304cGmail\u30a2\u30d7\u30ea\u306e\u30d1\u30b9\u30ef\u30fc\u30c9\u3092\u60aa\u7528\u3057\u3001\u6a19\u7684\u578b\u30d5\u30a3\u30c3\u30b7\u30f3\u30b0\u30ad\u30e3\u30f3\u30da\u30fc\u30f3\u30672\u6bb5\u968e\u8a8d\u8a3c\u3092 bypass \u3059\u308b \u3010\u8981\u7d04\u3011 \u30ed\u30b7\u30a2\u7cfbAPT29\u304c\u3001Gmail\u306e\u300c\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u56fa\u6709\u306e\u30d1\u30b9\u30ef\u30fc\u30c9\uff08ASP\uff09\u300d\u3092\u4f7f\u3044\u30012\u6bb5\u968e\u8a8d\u8a3c\uff082FA\uff09\u3092\u56de\u907f\u3057\u3066\u6a19\u7684\u306e\u30e1\u30fc\u30eb\u306b\u4e0d\u6b63\u30a2\u30af\u30bb\u30b9\u3059\u308b\u65b0\u305f\u306a\u30d5\u30a3\u30c3\u30b7\u30f3\u30b0\u653b\u6483\u3092\u5c55\u958b\u3057\u3066\u3044\u307e\u3059\u3002\u6a19\u7684\u3068\u306e\u4fe1\u983c\u95a2\u4fc2\u3092\u7bc9\u304d\u3001\u7c73\u56fd\u52d9\u7701\u306b\u306a\u308a\u3059\u307e\u3057\u305f\u30d5\u30a3\u30c3\u30b7\u30f3\u30b0\u30e1\u30fc\u30eb\u3067\u3001ASP\u306e\u8a2d\u5b9a\u306816\u6841\u30d1\u30b9\u30ef\u30fc\u30c9\u306e\u5171\u6709\u3092\u8a98\u5c0e\u3002\u53d6\u5f97\u3057\u305f\u30d1\u30b9\u30ef\u30fc\u30c9\u3067\u653b\u6483\u8005\u306f\u30e1\u30fc\u30eb\u306b\u7d99\u7d9a\u7684\u306b\u30a2\u30af\u30bb\u30b9\u53ef\u80fd\u3068\u306a\u308a\u307e\u3059\u3002\u3053\u306e\u624b\u6cd5\u306f\u7c73\u56fd\u653f\u5e9c\u3084\u8457\u540d\u4eba\u3092\u6a19\u7684\u3068\u3057\u3001\u8a8d\u8a3c\u3092\u7a81\u7834\u3059\u308b\u9ad8\u5ea6\u306a\u30bd\u30fc\u30b7\u30e3\u30eb\u30a8\u30f3\u30b8\u30cb\u30a2\u30ea\u30f3\u30b0\u304c\u7279\u5fb4\u3067\u2026","provider_url":"https://hatena.blog","height":"190","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fmalware-log.hatenablog.com%2Fentry%2F2025%2F06%2F19%2F000000_1\" title=\"Russian APT29 Exploits Gmail App Passwords to Bypass 2FA in Targeted Phishing Campaign - TT Malware Log\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","blog_title":"TT Malware Log","version":"1.0","author_url":"https://blog.hatena.ne.jp/tanigawa/","url":"https://malware-log.hatenablog.com/entry/2025/06/19/000000_1","author_name":"tanigawa","provider_name":"Hatena Blog","title":"Russian APT29 Exploits Gmail App Passwords to Bypass 2FA in Targeted Phishing Campaign","categories":["\u653b\u6483\u7d44\u7e54: APT29 / CozyDuke / Cozy Bear / Nobelium / Midnight Blizzard / UNC2452 / SolarStorm / Dark Halo","\u8a8d\u8a3c: 2\u6bb5\u968e\u8a8d\u8a3c","\u653b\u6483\u624b\u6cd5: \u8a8d\u8a3c\u56de\u907f","**\u56de\u907f\u624b\u6cd5(\u307e\u3068\u3081)","\u653b\u6483\u7d44\u7e54: UNC6293","\u8a8d\u8a3c: \u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u56fa\u6709\u306e\u30d1\u30b9\u30ef\u30fc\u30c9 / ASP"],"type":"rich","blog_url":"https://malware-log.hatenablog.com/","width":"100%","published":"2025-06-19 00:00:00","image_url":null}