Microsoft has uncovered the new phishing target of Russian hackers. Responsible for exploiting SolarWinds programs in 2020, Nobelium is an advanced persistent threat (APT) group, active again. In this article at InfoSecurity Magazine, Sarah Coble outlines their activities to disrupt US government agencies, think tanks, and NGOs.
The hackers were targeting nine federal agencies and more than 100 companies, confirmed a Microsoft Official. In a recent media statement, Tom Burt, the company’s VP of customer security and trust, confirmed that Nobelium aims to bring down federal agencies. The wave of malware attacks was directed to almost 3,000 email accounts of over 150 companies.
He also confirmed that the phishing attackers had affected about 24 countries worldwide. The top US victims are still suffering losses. Out of the four targeted companies, at least one is responsible for international development and human rights projects.
Nobelium often makes hacking attempts to breach government data. Burt believes federal agencies are proactively collecting intelligence data to improv foreign policies. It could be the reason for the multiple phishing attempts.
The Russian mafias commenced their malicious operations to get seamless access to the United States Agency for International Development (USAID) accounts. The threat actors managed to share phishing emails from there. All the emails had a malicious file link. Once clicked, it would allow the hackers to access and steal government data and create other nuisances.
According to Digital Shadows threat researcher Stefano De Blasi, Russian hackers are recognized for their malicious activities. Their targeted phishing campaigns a severe threat to the victim. The group aims to gather confidential data and valuable records to use against the government. Click on the following link to read the original article: https://www.infosecurity-magazine.com/news/solarwinds-hackers-go-phishing/