Officials Aiding Ukrainian Refugees Targeted by State-Sponsored Phishing Campaign, Researchers Say
European officials are being targeted by what appears to be a state-sponsored phishing campaign aimed at disrupting their efforts to help Ukrainian refugees, cybersecurity company Proofpoint said Wednesday.
According to the company's researchers, the attackers are using what's possibly a compromised Ukrainian armed service member's email account to target officials managing the logistics of refugees fleeing that country. The emails carry a malicious macro attachment that attempts to download dangerous malware, dubbed by the researchers as "SunSeed,"onto the target's computer.
The campaign comes as hundreds of thousands of people are fleeing Ukraine as Russian troops advance on its capitol, choking its border crossings with a handful of counties including Poland, Hungary, Slovakia and Romania. According to Proofpoint, the campaign could be an attempt to figure out where those people, as well as the resources needed to help them, could be headed next.
While the European officials targeted had a verity of expertise and job responsibilities, the attackers seemed to focus on people with responsibilities related to transportation, financial and budget allocation, administration and population movement within Europe.
https://www.msn.com/en-us/news/technology/officials-aiding-ukrainian-refugees-targeted-by-state-sponsored-phishing-campaign-researchers-say/ar-AAUwqVV