Conspiracy of Russian-backed hacking group exposed
Microsoft has revealed that a hacking group linked to Russia’s intelligence agency FSB (Federal Security Service) targeted employees of non-governmental organizations (NGOs). These organizations were providing assistance to Ukraine. Hackers resorted to phishing emails to steal WhatsApp data.
Method of phishing
According to Microsoft, hackers sent emails to target individuals, prompting them to join WhatsApp groups. These emails often used the names of US government officials and shared a QR code, which allegedly contained information related to Ukraine assistance.
Hacking group “Star Blizzard”
Microsoft has identified this group as “Star Blizzard”, which is linked to Russia’s intelligence agency FSB. The company reported that since October 2024, the US Department of Justice has taken action against more than 180 websites associated with this group.
WhatsApp and security measures
A WhatsApp spokesperson said that all personal conversations on the platform are secured through end-to-end encryption. Also, he advised to click only on links that come from trusted sources.
International response and US action
The US Cybersecurity and Infrastructure Security Agency (CISA) said in December that “Star Blizzard” is almost certainly linked to the FSB. CISA also reported that the group is targeting American and British politicians, academics and people associated with the defense sector.
The purpose of these types of attacks is not only to steal personal data, but also to gain political and strategic advantage. This disclosure by Microsoft shows that government and private organizations need to be more vigilant now.
Recently, the US has planned to impose more stringent sanctions on Russia. Experts have suggested that WhatsApp and other social media platforms should add additional security features. Organizations and individuals assisting Ukraine should be given regular cybersecurity training.
Tips for your safety
- Avoid clicking on any unknown link or QR code.
- Always use two-factor authentication (2FA).
- Update your software and applications regularly.
This incident has proved that the threat of cyber attacks is constantly increasing. It is time for every organization and individual to prioritize their digital security.
