This alert may not be shared outside your organization, Do Not Repost or send, place on other websites, List servers, or send to others via email, including other associations or parties. Members and Law enforcement use only. Contact us for any permissions. To do otherwise will result in the loss of membership.
Complete Story
11/07/2024
Russian Midnight Blizzard Spear Phishing Campaign Targets Thousands Using RDP Files
CPO Magazine
Microsoft has warned of an ongoing spear phishing campaign for intelligence gathering by the Russian state-linked threat actor Midnight Blizzard, Cozy Bear, APT29, Dukes, Yttrium, or UNC2452. The cybercrime group is linked to Russia’s Foreign Intelligence Service (SVR).
“Since October 22, 2024, Microsoft Threat Intelligence has observed Russian threat actor Midnight Blizzard sending a series of highly targeted spear-phishing emails to individuals in government, academia, defense, non-governmental organizations, and other sectors,” Microsoft said.
The Redmond, Washington-based tech giant says the campaign leverages a “signed Remote Desktop Protocol (RDP) configuration file that connected to an actor-controlled server.”
More Info
Alerts
The FRPA alert system distinguishes us from other groups by gathering and providing information to law enforcement, retailers AND financial institutions.
more information
Resources
Your electronic library to help in fighting financial fraud for all of our partners.
more information