Email security, Security Strategy, Plan, Budget

Google: Russian hackers targeting NATO, military email accounts

KYIV, UKRAINE – MARCH 30: A view of the Ukrainian flag with a signature “Russian ship, go f*ck yourself” as seen on the checkpoint in the Independence Square on March 30, 2022 in Kyiv, Ukraine. Local officials reported fresh attacks on the outskirts of Kyiv, despite yesterday’s announcement from Russia that it would “r...

Google is reporting that a Russian APT group known as Gamaredon, Callisto and COLDRIVER has for the first time been caught phishing accounts of NATO and Eastern European militaries in addition to existing campaigns against American NGOs, a Ukrainian defense contractor, and a Balkan military.

"These campaigns were sent using newly created Gmail accounts to non-Google accounts, so the success rate of these campaigns is unknown. We have not observed any Gmail accounts successfully compromised during these campaigns," said Billy Leonard of Google's Threat Analysis Group in a blog post.

Gamaredon, first identified in 2013, is known primarily for its activity in Ukraine. In December, Ukranian authorities disclosed the names of five alleged members of the group, all of whom operated at the Sevastopol branch of Russia's FSB.

Palo Alto networks observed that Gamaredon had been targeting a "Western Government" in Ukraine in mid-January.

"The team continues to work around the clock, focusing on the safety and security of our users and the platforms that help them access and share important information."

Joe Uchill

Joe is a senior reporter at SC Weekly, focused on policy issues. He previously covered cybersecurity for Axios, The Hill and the Christian Science Monitor’s short-lived Passcode website.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.