<ul><li>The Russian group Star Blizzard targets WhatsApp accounts in a new spear-phishing campaign, shifting tactics to avoid detection.</li><li>The Star Blizzard group, aka 'Callisto', 'Seaborgium', 'ColdRiver', and 'TA446', has been targeting government officials, military personnel, journalists, and think tanks since at least 2015.</li><li>Their recent campaign involves sending emails to targets, impersonating a US government official and containing a malicious link, which redirects to a webpage with a QR code. Scanning the code grants the attackers access to the victim's WhatsApp account.</li><li>Microsoft advises vigilance for email users targeted by Star Blizzard and provides Indicators of Compromise (IoCs) for this campaign.</li></ul>

Russia-linked APT Star Blizzard targets WhatsApp accounts

Discover more