Summary: The Russian state-backed hacking group Star Blizzard has attempted to compromise the WhatsApp accounts of nonprofits supporting Ukraine using new phishing tactics. This campaign involved impersonating U.S. government officials to lure victims into a malicious WhatsApp group, allowing attackers to access and exfiltrate sensitive information. Despite recent disruptions to their operations, Star Blizzard has demonstrated resilience by quickly adapting their methods.
Threat Actor: Star Blizzard | Star Blizzard
Victim: Nonprofits aiding Ukraine | nonprofits supporting Ukraine
Keypoints :
- Star Blizzard used phishing messages impersonating U.S. officials to lure victims into a fake WhatsApp group.
- The group has shown resilience by quickly adapting to recent takedowns of their domains and websites.
- They have targeted over 30 civil society entities, including journalists and think-tanks, since January 2023.
Source: https://therecord.media/russia-star-blizzard-whatsapp-ukraine