(ANSA) – ROME, MARCH 08 – After Microsoft, Google also takes the field to monitor security in this period of conflict. The security division of the tech giant, the Threat Analysis Group (Tag), has identified spying and phishing campaigns by cybercriminal groups already known to law enforcement agencies, including FancyBear and Ghostwriter, attributable to Russia and Belarus.
In particular, the company explains in a post, the FancyBear / APT28 group, a threat actor attributed to the Russian Gru (the information service of the Armed Forces) has conducted several phishing campaigns aimed at users of ukr.net, a media company. Ukraine, to steal credentials. Phishing emails include links to attacker-controlled sites that have “been removed”. Another actor in this scenario is the Belarusian group Ghostwriter / UNC1151, which has conducted phishing campaigns to steal credentials aimed at the Polish and Ukrainian governments, military organizations and even users in the last week. Google explains that it has also blocked these threats.
Finally, the company points out that it continues to detect Ddos attacks against numerous Ukrainian sites (to take them offline), including that of the Ministry of Foreign Affairs, Internal Affairs, as well as services such as Liveuamap designed to help people find information. “We will continue to take action, identify attackers and share relevant information with other industry experts and governments with the goal of raising awareness of these issues, protecting users and preventing future attacks,” he concludes. (HANDLE).
Source: Ansa
I have been working in the news industry for over 10 years now and I have worked for some of the biggest news websites in the world. My focus has always been on entertainment news, but I also cover a range of other topics. I am currently an author at Global happenings and I love writing about all things pop-culture related.
