A naukri.com initiative
Securityaffairs
1M
9
Image Credit: Securityaffairs
Microsoft and DOJ seized the attack infrastructure used by Russia-linked Callisto Group
- Microsoft and the US Department of Justice (DoJ) have seized over 100 domains linked to Russia-based Callisto Group.
- The DoJ has also revealed a warrant to seize 41 domains used by the group for computer fraud in the US.
- Microsoft took separate action to restrain another 66 domains.
- Between January 2023 and August 2024, Callisto Group targeted over 30 civil society organisations by deploying spear-phishing campaigns.
- A partially unsealed affidavit reveals that the APT group targeted companies and employees of various US departments and military contractors.
- Microsoft also admitted that disrupting the domains will not completely stop the group’s spear-phishing activities.
- The Callisto Group, also known as Seaborgium, Star Blizzard, ColdRiver, and TA446, is an advanced persistent threat group.
- It is known to have targeted NATO countries, including the Baltics, Nordics, and Eastern Europe regions, as well as numerous other sectors, since at least 2015.
- The UK government also recently revealed that the FSB, a Russian intelligence unit, was behind the Callisto Group and its activities, which include disrupting UK politics and democratic processes.
- While dispruting the infrastructure will impact Callisto's operations, Microsoft admitted it is likely that the group will establish new infrastructure at some point.
Read Full Article
Like
For uninterrupted reading, download the app