Spear-phishing campaign linked to SolarWinds attackers halted following domain seizure

The web domain seizure enforcement action aims to clamp down on the group’s latest campaign.
Compromised account
On or around May 25, malicious parties abused a compromised USAID account at a legitimate mass mailing service to launch a spear-phishing campaign sent to “thousands of email accounts at over one hundred entities”.
These malicious messages purported to contain a “special alert” from USAID which was designed to trick prospective victims into clicking on a link and visiting a malicious site loaded with malware.
“The seizure of the two domains was aimed at disrupting the malicious actors’ follow-on exploitation of victims, as well as identifying compromised victims,” according to a US Department of Justice statement on the case.

Related Keywords

Russia ,Russian ,Elena Abrazhevich Shutterstock ,Nobelium Group ,Foreign Intelligence Service ,Agency For International Development ,Us Department Of Justice ,Microsoft ,Us Justice Department ,Elena Abrazhevich ,International Development ,Cozy Bear ,Cobalt Strike ,Cobalt Strike Beacon ,ரஷ்யா ,ரஷ்ய ,வெளிநாட்டு உளவுத்துறை சேவை ,எங்களுக்கு துறை ஆஃப் நீதி ,மைக்ரோசாஃப்ட் ,எங்களுக்கு நீதி துறை ,சர்வதேச வளர்ச்சி ,வசதியான தாங்க ,கோபால்ட் வேலைநிறுத்தம் ,கோபால்ட் வேலைநிறுத்தம் பெக்கான் ,