A major question hanging over the United States midterm election season: Where was Russia? But while GRU hackersdidn’t directly interfere, they appear to be as active as ever. New research from two threat intelligence firms indicates that two prominent Russia-linked groups have been developing some clever phishing innovations, and are working purposefully to expand their reach.
“There’s a lot of ramping up from this particular nation state in general,” says Jen Miller-Osborn, deputy director of threat intelligence in Palo Alto Networks’ Unit 42 research team.
The prolific hacking group APT 28—also known as Fancy Bear or Sofacy—which memorably hacked the Democratic National Committee in 2016, has a new phishing tool in its arsenal, according to findings from security firm Palo Alto Networks.