A representative of Microsoft Tim Bert reported new hacker attacks on a number of research, consulting and non-profit organizations, as well as US state agencies this week. He wrote about it in his blog.
According to him, the attack may stand “Nobelium grouping from Russia”, associated with attacks on SolarWinds clients in 2020.
“This wave of attacks was aimed at three thousand email accounts in more than 150 countries,” explained Bert, adding that the hacker group began their attacks with access to the marketing system of the American Agency for International Development (USAID).
Cybercriminals sent emails with phishing links, during the transition to which malicious software was loaded onto computers. So, hackers were able to steal data or infect other computers online.
Many attacks were automatically blocked, users continue to notify what happened.
In April, the United States accused CVR in involvement in a large-scale cybershpionage campaign using SolarWinds technologies. On April 15, the American president Joe Biden signed a decree on the introduction of new anti-Russian sanctions for “destabilizing actions in the international arena”.
At the beginning of 2020, the Systems of the US Department of Finance and National Telecommunications and Information and Information were hacked, data from servers were abducted. Hacking also touched the Ministry of Internal Security, the Ministry of Health and the State Department. State institutions used SolarWinds. Washington accused of what has happened “Russian hackers.”