The Russian government ran this scheme to steal Americans' sensitive information, using seemingly legitimate email accounts to trick victims into revealing account credentials, according to US Deputy Attorney General Lisa Monaco.
The 41 seized domains were used or intended to be used by members of the Callisto Group in an ongoing and sophisticated spear phishing campaign targeting various entities, including US-based companies and defense contractors.
As recently as August, the University of Toronto's Citizen Lab warned of a massive, two-year espionage campaign during which Callisto hackers had been stealing user credentials and 2FA tokens from victims in the US and Europe.
Between January 2023 and August 2024, Redmond spotted the Russians phishing 30 civil society entities and organizations, including journalists, think tanks, and NGOs.
Collection
[
|
...
]