Security News > 2021 > October > Microsoft: Russian state hackers behind 53% of attacks on US govt agencies

Microsoft says that Russian-sponsored hacking groups are increasingly targeting US government agencies, with roughly 58% of all nation-state attacks observed by Microsoft between July 2020 and June 2021 coming from Russia.
"Russian nation-state actors are increasingly targeting government agencies for intelligence gathering, which jumped from 3% of their targets a year ago to 53% - largely agencies involved in foreign policy, national security or defense," said Tom Burt, Microsoft's Corporate Vice President for Customer Security & Trust.
The most active Russian-backed threat actor is an activity group tracked by Microsoft as Nobelium.
In all, Nobelium has coordinated the attacks behind 92% of notifications Microsoft sent to its customers about Russia-based threat activity from July 2020 to June 2021.
As Microsoft further explained, this is only a partial overview of nation-state actors' breach attempts - Microsoft customers received 20,500 notifications about such attacks.
In April 2021, the US government formally accused this SVR division of coordinating the SolarWinds "Broad-scope cyber espionage campaign" that led to the compromise of multiple US federal agencies.
News URL
Related news
- Hacker pleads guilty to SIM swap attack on US SEC X account (source)
- Microsoft: Russian-Linked Hackers Using 'Device Code Phishing' to Hijack Accounts (source)
- Microsoft: Hackers steal emails in device code phishing attacks (source)
- US indicts 8Base ransomware operators for Phobos encryption attacks (source)
- Russian military hackers deploy malicious Windows activators in Ukraine (source)
- BadPilot network hacking campaign fuels Russian SandWorm attacks (source)
- Microsoft Uncovers Sandworm Subgroup's Global Cyber Attacks Spanning 15+ Countries (source)
- whoAMI attacks give hackers code execution on Amazon EC2 instances (source)
- Chinese hackers breach more US telecoms via unpatched Cisco routers (source)
- Critical PostgreSQL bug tied to zero-day attack on US Treasury (source)