Security News > 2022 > March > Google: Russian Hackers Target Ukrainians, European Allies via Phishing Attacks

A broad range of threat actors, including Fancy Bear, Ghostwriter, and Mustang Panda, have launched phishing campaigns against Ukraine, Poland, and other European entities amid Russia's invasion of Ukraine.
Google's Threat Analysis Group said it took down two Blogspot domains that were used by the nation-state group FancyBear - which is attributed to Russia's GRU military intelligence - as a landing page for its social engineering attacks.
The hacking group also "Conducted credential phishing campaigns over the past week against Polish and Ukrainian government and military organizations," Shane Huntley, director of Google TAG, said in a report.
"Russian hackers keep on attacking Ukrainian information resources nonstop," the State Service of Special Communications and Information Protection of Ukraine said in a tweet over the weekend.
In a related development, the Anonymous hacking collective claimed that it took down the website of the Federal Security Service of Russia and that it interrupted the live feeds for several Russian TV channels and streaming services like Wink, Ivi, Russia 24, Channel One, and Moscow 24 to broadcast war footage from Ukraine.
The wave of counterattacks against Russia has been galvanized by the formation of an IT Army, a crowdsourced Ukrainian government initiative that's relying on digital warfare to disrupt Russian government and military targets.
News URL
https://thehackernews.com/2022/03/google-russian-hackers-target.html
Related news
- Microsoft: Russian-Linked Hackers Using 'Device Code Phishing' to Hijack Accounts (source)
- Microsoft: Hackers steal emails in device code phishing attacks (source)
- Hackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMail (source)
- Ukrainian military targeted in new Signal spear-phishing attacks (source)
- Zero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks (source)
- Hackers Exploit Google Tag Manager to Deploy Credit Card Skimmers on Magento Stores (source)
- Hacker pleads guilty to SIM swap attack on US SEC X account (source)
- Russian military hackers deploy malicious Windows activators in Ukraine (source)
- BadPilot network hacking campaign fuels Russian SandWorm attacks (source)
- whoAMI attacks give hackers code execution on Amazon EC2 instances (source)