We are talking about attacks against government structures.
The US Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are taking measures in connection with the data on the phishing attack against government agencies, but have not yet linked these actions to any players. This is stated in a statement issued by CISA.
The FBI and CISA are taking action in connection with the phishing attack against government, intergovernmental and non-governmental organizations. We confirm reports from open sources attributing activities to [the] APT29 group, also known as Nobelium,” the text notes. “At the same time, we are investigating this activity and do not link it to any attackers at the moment.”
According to the US agency, hackers with the help of a hacked account sent phishing emails to more than 7 thousand addresses belonging to about 350 organizations. “Fake emails were sent out that were allegedly sent by an American government organization. The emails contained a certified link from one of the companies [engaged in software], redirecting to malicious addresses,” the text says. Microsoft spokesman Tim Burt on Thursday made the claim that some US organizations and government agencies were attacked this week by hackers of the Nobelium group from Russia, which may be behind the hacking of the US company SolarWinds last year.