Security News > 2022 > March > Google: Russian Hackers Target Ukrainians, European Allies via Phishing Attacks
A broad range of threat actors, including Fancy Bear, Ghostwriter, and Mustang Panda, have launched phishing campaigns against Ukraine, Poland, and other European entities amid Russia's invasion of Ukraine.
Google's Threat Analysis Group said it took down two Blogspot domains that were used by the nation-state group FancyBear - which is attributed to Russia's GRU military intelligence - as a landing page for its social engineering attacks.
The hacking group also "Conducted credential phishing campaigns over the past week against Polish and Ukrainian government and military organizations," Shane Huntley, director of Google TAG, said in a report.
"Russian hackers keep on attacking Ukrainian information resources nonstop," the State Service of Special Communications and Information Protection of Ukraine said in a tweet over the weekend.
In a related development, the Anonymous hacking collective claimed that it took down the website of the Federal Security Service of Russia and that it interrupted the live feeds for several Russian TV channels and streaming services like Wink, Ivi, Russia 24, Channel One, and Moscow 24 to broadcast war footage from Ukraine.
The wave of counterattacks against Russia has been galvanized by the formation of an IT Army, a crowdsourced Ukrainian government initiative that's relying on digital warfare to disrupt Russian government and military targets.
News URL
https://thehackernews.com/2022/03/google-russian-hackers-target.html
Related news
- U.S. Offers $10 Million for Info on Russian Cadet Blizzard Hackers Behind Major Attacks (source)
- Microsoft and DOJ disrupt Russian FSB hackers' attack infrastructure (source)
- Pro-Ukrainian Hackers Strike Russian State TV on Putin's Birthday (source)
- Russian RomCom Attacks Target Ukrainian Government with New SingleCamper RAT Variant (source)
- Chinese hackers use new data theft malware in govt attacks (source)
- Cybercriminals Exploit HTTP Headers for Credential Theft via Large-Scale Phishing Attacks (source)
- Hacktivist Group Twelve Targets Russian Entities with Destructive Cyber Attacks (source)
- Hackers deploy AI-written malware in targeted attacks (source)
- N. Korean Hackers Deploy New KLogEXE and FPSpy Malware in Targeted Attacks (source)
- Australian Organisations Targeted by Phishing Attacks Disguised as Atlassian (source)