this post was submitted on 17 Aug 2024
28 points (100.0% liked)

Technology

37728 readers
608 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:

This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
alyaza@beehaw.org
TheRtRevKaiser@beehaw.org
gyrfalcon@beehaw.org
rs5th@beehaw.org
SemioticStandard@beehaw.org
TheRtRevKaiser@kbin.social
Los@beehaw.org
coldredlight@beehaw.org
remington@beehaw.org
28
The Kremlin's 'perceived enemies': new phishing campaign is targeting Western and Russian civil society (citizenlab.ca)
submitted 3 months ago by 0x815@feddit.org to c/technology@beehaw.org
1 comments fedilink hide all child comments
 

This campaign, which Canada's Citizen Lab has investigated in collaboration with Access Now and with the participation of numerous civil society organizations including First Department, Arjuna Team, and RESIDENT.ngo, engages targets with personalized and highly-plausible social engineering in an attempt to gain access to their online accounts.

The researchers attribute this campaign to COLDRIVER (also known as Star Blizzard, Callisto and other designations). This threat actor is attributed to the Russian Federal Security Service (FSB) by multiple governments.

They identified a second threat actor targeting similar communities, whom we name COLDWASTREL. We assess that this actor is distinct from COLDRIVER, and that the targeting that we have observed aligns with the interests of the Russian government.

top 1 comments
sorted by: hot top controversial new old
[–] kbal@fedia.io 7 points 3 months ago

The URL to which the target is redirected is typically a webpage crafted by the attacker to look like a genuine login page for the target’s email service

DO NOT enter your password after clicking on a link you got in an email, or an emailed pdf, or an emailed word document, or a link you got in telegram, or a strange url that came to you in a dream, or anything else like that. Why is it so difficult to get people to remember this?