Deputy Attorney General Lisa Monaco stated, 'The Russian government ran this scheme to steal Americans' sensitive information, using seemingly legitimate email accounts to trick victims.'
The DoJ reported the seized domains facilitated 'violations of unauthorized access to a computer to obtain information from a department or agency of the United States, unauthorized access to a computer to obtain information from a protected computer.'
The threat actor known as COLDRIVER has been operational since at least 2012 and is linked to the Russian Federal Security Service (FSB).
Microsoft has taken action by filing a civil suit for seizing 66 additional domains used by COLDRIVER, targeting over 30 civil society entities.
Collection
[
|
...
]