Google has published a detailed report on recent cyber activity in Russia and Belarus.
IT specialists from the North Atlantic Alliance and the military departments of some Eastern European countries have noticed attempts by Russian hackers to break into their databases. Google's threat analysis team has published a report on recorded cyber activity from the territory of the Russian Federation.
Responsible for the cyber attack is a hacker group known as Coldriver, otherwise called Callisto, located in Russia. The main targets of cybercriminals were the armed forces of several Eastern European countries, which are not specified, and the NATO Center of Excellence.
“These campaigns were sent using newly created Gmail accounts to non-Google accounts, so the likelihood of success of these campaigns is unknown,” the document said.
However, the Threat Analysis Team noted that they did not find any compromised Gmail accounts during the cyberattacks. In the run-up to Coldriver (Calisto), “launched credential phishing campaigns,” and the report lists these domains.
For more than a month, Russian hackers have been regularly carrying out cyber attacks not only on Ukraine. On the eve of the war, they broke the European satellite Internet system. And recently hackers sent letters “Wage arrears” to government agencies of Ukraine.
