Mastodawn

A routine "I'm not a robot" check turned into a masterstroke for cyber-espionage. See how Star Blizzard's NoRobot and MaybeRobot malware transformed simple clicks into high-stakes intelligence operations.

https://thedefendopsdiaries.com/the-rise-of-norobot-and-mayberobot-how-star-blizzard-redefined-malware-tactics/

#starblizzard
#norobot
#mayberobot
#malwaretactics
#cyberespionage

Andreas Klopsch Jan 30, 2025

🚀 MSTIC Uncovers STAR Blizzard Spear-Phishing Campaign Targeting WhatsApp Users

Microsoft has identified STAR Blizzard, a phishing campaign targeting WhatsApp accounts through social engineering.

https://www.microsoft.com/en-us/security/blog/2025/01/16/new-star-blizzard-spear-phishing-campaign-targets-whatsapp-accounts/

#threatintel #infosec #starblizzard #mstic

New Star Blizzard spear-phishing campaign targets WhatsApp accounts | Microsoft Security Blog

In mid-November 2024, Microsoft Threat Intelligence observed the Russian threat actor we track as Star Blizzard sending their typical targets spear-phishing messages, this time offering the supposed opportunity to join a WhatsApp group. This is the first time we have identified a shift in Star Blizzard’s longstanding tactics, techniques, and procedures (TTPs) to leverage a […]

Microsoft Security Blog

Marcel SIneM(S)US Jan 24, 2025

#StarBlizzard: #WhatsApp-Kontoübernahme durch #Phishing-Kampagne | Security https://www.heise.de/news/Star-Blizzard-WhatsApp-Kontouebernahme-durch-Phishing-Kampagne-10252402.html #CyberCrime

Star Blizzard: WhatsApp-Kontoübernahme durch Phishing-Kampagne

Microsoft berichtet von einer Phishing-Kampagne der kriminellen Gruppe Star Blizzard. Sie versucht, WhatsApp-Konten zu übernehmen.

heise online

Rene Robichaud Jan 17, 2025

Russia-linked APT Star Blizzard targets WhatsApp accounts
https://securityaffairs.com/173165/apt/russia-star-blizzard-targets-whatsapp-accounts.html

#Infosec #Security #Cybersecurity #CeptBiro #RussiaLinked #APT #StarBlizzard #WhatsAppAccounts

Russia-linked APT Star Blizzard targets WhatsApp accounts

The Russian group Star Blizzard targets WhatsApp accounts in a new spear-phishing campaign, shifting tactics to avoid detection.

Security Affairs

The Threat Codex Jan 16, 2025

New Star Blizzard spear-phishing campaign targets WhatsApp accounts
#StarBlizzard
https://www.microsoft.com/en-us/security/blog/2025/01/16/new-star-blizzard-spear-phishing-campaign-targets-whatsapp-accounts/

New Star Blizzard spear-phishing campaign targets WhatsApp accounts | Microsoft Security Blog

Microsoft Security Blog

Politics & Geopolitis Oct 3, 2024

The group, known as Star Blizzard, sent emails to victims that appeared to come from a trusted source, according to Microsoft and U.S. officials.#russia #microsoft #star-blizzard #military-contractors #circulated-defense-news
Russian hacking group targeted US military contractors

Russian hacking group targeted US military contractors

The group, known as Star Blizzard, sent emails to victims that appeared to come from a trusted source, according to Microsoft and U.S. officials.

Defense News

BGDon 🇨🇦 🇺🇸 👨‍💻Oct 3, 2024

Microsoft coordinated with the US gov and seized over 100 websites used by Russian threat actor Star Blizzard - the latest operation by authorities to disrupt infrastructure used by cyber threat actors. https://www.infosecurity-magazine.com/news/microsoft-us-govenment-disrupt/ #cyberthreat #cybersecurity #hackers #socialengineering #DOJ #microsoft #starblizzard

Microsoft and US Government Disrupt Russian Star Blizzard Operations

Microsoft and the US government have collectively seized over 100 websites used by Russian nation-state actor Star Blizzard

Infosecurity Magazine

The Threat Codex Oct 3, 2024

Protecting Democratic Institutions from Cyber Threats
#StarBlizzard
https://blogs.microsoft.com/on-the-issues/2024/10/03/protecting-democratic-institutions-from-cyber-threats/

Protecting Democratic Institutions from Cyber Threats

Microsoft's Digital Crimes Unit (DCU) disrupts the infrastructure of Russian nation-state actor Star Blizzard, seizing 66 domains used in cyberattacks. In collaboration with the DOJ, over 100 websites have been taken down, impacting Star Blizzard's operations and enhancing cybersecurity efforts.

Microsoft On the Issues

cje Oct 3, 2024

Justice Department Disrupts Russian Intelligence Spear-Phishing Efforts https://www.justice.gov/opa/pr/justice-department-disrupts-russian-intelligence-spear-phishing-efforts #starblizzard #protect2024

Justice Department Disrupts Russian Intelligence Spear-Phishing Efforts

The Justice Department announced today the unsealing of a warrant authorizing the seizure of 41 internet domains used by Russian intelligence agents and their proxies to commit computer fraud and abuse in the United States. As an example of the Department’s commitment to public-private operational collaboration to disrupt such adversaries’ malicious cyber activities, as set

Richi Jennings Dec 8, 2023

#StarBlizzard #FSB team called out by #FiveEyes govts.

The U.S. and UK, backed by Australia, Canada and New Zealand, have revealed more about an “advanced” #Russian #phishing campaign. It targets “academia, defense, governmental organizations, non-governmental organizations, think tanks and high-profile individuals.”

The UK was the first to release the accusations—because time zones, presumably. In today’s #SBBlogwatch, we unpick the latest. At @TechstrongGroup’s @SecurityBlvd: https://securityboulevard.com/2023/12/star-blizzard-russian-fsb-richixbw/?utm_source=richisoc&utm_medium=social&utm_content=richisoc&utm_campaign=richisoc

Russian FSB Targets US and UK Politicians in Sneaky Spear-Phish Plan

TA446’s new TTPs: “Star Blizzard” FSB team called out by Five Eyes governments (again).

Security Boulevard