Three years of reporting, funded by our readers — become a member now and help us prepare for 2025.
Goal: 1,000 new members for our birthday. Gift a membership to your friend and help us prepare for what 2025 might bring.
Become a member Gift membership
Skip to content
Edit post

Russian phishing campaign targets Kremlin's enemies at home and abroad

by Abbey Fenbert August 15, 2024 5:17 AM 2 min read
Illustrative image of a fishing rod harvesting user data in cyberspace. (Sarayut Thaneerat/Getty Images)
This audio is created with AI assistance

A sophisticated Russian spear phishing campaign has been targeting the Kremlin's critics in Russia and the West, according to a report from digital rights groups Citizen Labs and Access Now published Aug. 14.

Phishing is a type of social engineering in which attackers seek access to victims' online accounts by leveraging  personalized deceptive tactics.

The hacker group Coldriver, which has ties to Russia's Federal Security Service (FSB), is responsible for the phishing scheme, according to the report. The campaign targeted Russian opposition figures, NGOs, and Western diplomats, including former U.S. Ambassador to Ukraine, Steven Pifer.

Hackers typically initiated email exchanges with targets by impersonating someone they already knew, such as a colleage, funder, or government employee, researchers said. Messages contained work-related requests, such as viewing a proposal or article.

Targets would then click on the attached PDF, which contained a phishing link that would transmit data from the victim's system to the attacker's server when clicked.

Researchers described the email ruse as credible and effective, with many targets believing they were exchanging messages with a real person. In the case of Pifer, the phishing email impersonated another former U.S. ambassador.

The campaign also targeted Polina Machold, publisher of the Russian independent investigative outlet Proekt Media, and multiple officials and academics at U.S. think tanks.

"Importantly, we suspect that the total pool of targets is likely much larger than the civil society groups whose cases we have analyzed," researchers wrote.

"We have observed U.S. government personnel impersonated as part of this campaign, and ... we expect the U.S. government remains a target."

Russian hacker groups have engaged in various forms of cyber warfare throughout the full-scale war, including cyberattacks against Ukraine, hacks of civilian infrastructure in Europe, and interference in foreign elections.  

The Invisible War: Inside the electronic warfare arms race that could shape course of war in Ukraine
When Ukraine received Excalibur artillery shells in March 2022 from the U.S. shortly after the start of Russia’s full-scale invasion, it was immediately the military’s weapon of choice. Thanks to their GPS navigation system, these expensive munitions had a high-precision flight trajectory and could…
Three years of reporting, funded by our readers.
Millions read the Kyiv Independent, but only one in 10,000 readers makes a financial contribution. Thanks to our community we've been able to keep our reporting free and accessible to everyone. For our third birthday, we're looking for 1,000 new members to help fund our mission and to help us prepare for what 2025 might bring.
Three years. Millions of readers. All thanks to 12,000 supporters.
It’s thanks to readers like you that we can celebrate another birthday this November. We’re looking for another 1,000 members to help fund our mission, keep our journalism accessible for all, and prepare for whatever 2025 might bring. Consider gifting a membership today or help us spread the word.
Help us get 1,000 new members!
Become a member Gift membership
visa masterCard americanExpress

News Feed

MORE NEWS

Editors' Picks

Enter your email to subscribe
Please, enter correct email address
Subscribe
* indicates required
* indicates required
Subscribe
* indicates required
* indicates required
Subscribe
* indicates required
Subscribe
* indicates required
Subscribe
* indicates required

Subscribe

* indicates required
Subscribe
* indicates required
Subscribe
* indicates required
Explaining Ukraine with Kate Tsurkan
* indicates required
Successfuly subscribed
Thank you for signing up for this newsletter. We’ve sent you a confirmation email.