Russian FSB Cyber Actor Star Blizzard Continues Worldwide
2023年12月7日 · The Russia-based actor Star Blizzard (formerly known as SEABORGIUM, also known as Callisto Group/TA446/COLDRIVER/TAG-53/BlueCharlie) continues to successfully use spearphishing attacks against targeted organizations and individuals in the UK, and other geographical areas of interest, for information-gathering activity.
Star Blizzard - MITRE ATT&CK®
2024年6月14日 · Star Blizzard is a cyber espionage and influence group originating in Russia that has been active since at least 2019. Star Blizzard campaigns align closely with Russian state interests and have included persistent phishing and credential theft against academic, defense, government, NGO, and think tank organizations in NATO countries ...
New Star Blizzard spear-phishing campaign targets WhatsApp …
2025年1月16日 · In mid-November 2024, Microsoft Threat Intelligence observed the Russian threat actor we track as Star Blizzard sending their typical targets spear-phishing messages, this time offering the supposed opportunity to join a WhatsApp group.
俄APT组织Star Blizzard利用WhatsApp二维码窃取凭证 | CN-SEC
2025年1月17日 · Star Blizzard(原名 SEABORGIUM)是一个与俄罗斯有关的威胁活动集群,以其凭证收集活动而闻名。 该组织至少从 2012 年开始活跃,还以 Blue Callisto、BlueCharlie(或 TAG-53)、Calisto(也拼写为 Callisto)、COLDRIVER、Dancing Salome、Gossamer Bear、Iron Frontier、TA446 和 UNC4057 等绰号 ...
US, Microsoft Aim to Disrupt Russian threat actor ‘Star Blizzard’
2024年10月7日 · New reports from both Microsoft’s and the expose a disruptive operation against more than 100 servers used by “Star Blizzard” — a Russian-based cyber threat actor specializing in compromising...
Star Blizzard increases sophistication and evasion in ongoing …
2023年12月7日 · Microsoft Threat Intelligence continues to track and disrupt malicious activity attributed to a Russian nation-state actor we call Star Blizzard. Star Blizzard has continuously improved their detection evasion capabilities while remaining focused on email credential theft against the same targets.
Protecting Democratic Institutions from Cyber Threats - Microsoft …
2024年10月3日 · Microsoft's Digital Crimes Unit (DCU) disrupts the infrastructure of Russian nation-state actor Star Blizzard, seizing 66 domains used in cyberattacks. In collaboration with the DOJ, over 100 websites have been taken down, impacting Star Blizzard's operations and enhancing cybersecurity efforts.
Star Blizzard 黑客组织利用 WhatsApp 攻击高价值外交官 | CN …
Star Blizzard 通过在向目标发送的 电子邮件 中冒充美国政府官员来发起攻击。 诱饵是邀请目标加入与支持乌克兰的非政府组织有关的 WhatsApp 群组。 该电子邮件包含故意破坏的二维码,试图强迫收件人回复请求替代链接。 如果受害者回应,Star Blizzard 会发送另一封带有“t.ly”短链接的电子邮件,将受害者引导到一个模仿合法 WhatsApp 邀请页面的虚假网页,其中包含新的二维码。 然而,新的二维码是将新设备(攻击者的设备)链接到受害者的 WhatsApp 帐户。
CISA and International Partners Release Advisory on Russia-based …
2023年12月7日 · The joint CSA aims to raise awareness of the specific tactics, techniques, and delivery methods used by this Russia-based threat actor group to target individuals and organizations. Known Star Blizzard techniques include: Creating malicious domains that resemble legitimate organizations.
俄黑客组织Star Blizzard再出击,目标美国政府官员与安全专家
2025年1月21日 · Star Blizzard, 原名SEABORGIUM ,是一个与俄罗斯政府有联系的黑客组织,以凭证收集活动而广泛闻名。该组织至少自2012年开始活跃,并曾使用多个别名进行追踪,包括Blue Callisto、BlueCharlie(或TAG-53)、Calisto(或Callisto的另一种拼写)、COLDRIVER、Dancing Salome、Gossamer ...