Security News > 2022 > March > Google: Russian Hackers Target Ukrainians, European Allies via Phishing Attacks
A broad range of threat actors, including Fancy Bear, Ghostwriter, and Mustang Panda, have launched phishing campaigns against Ukraine, Poland, and other European entities amid Russia's invasion of Ukraine.
Google's Threat Analysis Group said it took down two Blogspot domains that were used by the nation-state group FancyBear - which is attributed to Russia's GRU military intelligence - as a landing page for its social engineering attacks.
The hacking group also "Conducted credential phishing campaigns over the past week against Polish and Ukrainian government and military organizations," Shane Huntley, director of Google TAG, said in a report.
"Russian hackers keep on attacking Ukrainian information resources nonstop," the State Service of Special Communications and Information Protection of Ukraine said in a tweet over the weekend.
In a related development, the Anonymous hacking collective claimed that it took down the website of the Federal Security Service of Russia and that it interrupted the live feeds for several Russian TV channels and streaming services like Wink, Ivi, Russia 24, Channel One, and Moscow 24 to broadcast war footage from Ukraine.
The wave of counterattacks against Russia has been galvanized by the formation of an IT Army, a crowdsourced Ukrainian government initiative that's relying on digital warfare to disrupt Russian government and military targets.
News URL
https://thehackernews.com/2022/03/google-russian-hackers-target.html
Related news
- Russian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing Emails (source)
- North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks (source)
- Russian hackers hijack Pakistani hackers' servers for their own attacks (source)
- Russian hackers hijack Pakistani hackers' servers for their own attacks (source)
- Russian hackers use RDP proxies to steal data in MiTM attacks (source)
- Ongoing phishing attack abuses Google Calendar to bypass spam filters (source)
- Russian Espionage Group Targets Ukrainian Military with Malware via Telegram (source)
- Russian hackers deliver malicious RDP configuration files to thousands (source)
- Russian spies use remote desktop protocol files in unusual mass phishing drive (source)
- North Korean govt hackers linked to Play ransomware attack (source)