Seqrite Labs has reported the emergence of a new APT group, dubbed Noisy Bear, targeting Kazakhstan’s energy sector, specifically the state-owned KazMunaiGas. Utilizing spear-phishing tactics, the group sent emails mimicking internal HR communications to trick employees into downloading malicious payloads. This highlights a worrying trend as ransomware attacks in the oil and gas industry surged by over 935% year-over-year, driven by increasing automation and outdated security practices. The ongoing threats to critical infrastructure underscore the need for enhanced cybersecurity measures and vigilance against sophisticated cyber adversaries, particularly those potentially linked to Russian entities targeting Central Asian nations.