Numerous cyberattacks are being launched by Russian and Belarusian threat groups against Ukrainian civilians and soldiers amid the ongoing Russian invasion of Ukraine, CNN reports.
Attackers have not only been impersonating independent news outfits and journalists but also conducting campaigns to remove posts of Russian critics from social media, according to Facebook parent company Meta. Suspected Belarusian state-sponsored hacking group Ghostwriter has also sought to compromise dozens of Ukrainian military members' Facebook accounts, with a handful of attacks being successful. Meta noted that nearly 200 Russia-based accounts have already been removed for repeatedly submitting false reports on violations of Facebook's hate speech and other policies. Mass reporting of critics' social media accounts has accounted for a large part of social media attacks since the invasion, said Digital Security Lab Ukraine co-founder Vadym Hudyma. The new report comes after Meta announced that it had taken down a Russian cyber operation in February.
Forty-five malicious NPM and PyPI packages have been deployed by threat actors to facilitate extensive data theft operations as part of a campaign that commenced on Sept. 12, according to BleepingComputer.
Sixty thousand emails from U.S. State Department accounts were noted by a staffer working for Sen. Eric Schmitt, R-Mo., to have been exfiltrated by Chinese threat actors during the widespread compromise of Microsoft email accounts that commenced in May, according to Reuters.