Government agencies that are part of the US government were attacked this week by hackers from the Nobelium group, which has its roots in Russia. This was stated by Vice President Tim Burt in his official blog.
The wave of attacks, he said, targeted 3,000 email accounts in more than 150 countries and, in addition to American government agencies, affected research, consulting and non-profit organizations.
A group of hackers began their attacks this week by gaining access to the US Agency for International Development (USAID) marketing system, after which cybercriminals were able to send out emails with phishing links, which downloaded malicious software to computers.
The phishing emails sent on May 25, according to Burt, contain allegedly new information about the 2020 election fraud.
At the same time, Nobelium is “the same structure that is behind the attacks on SolarWinds customers in 2020,” Bert said, referring to the largest hacking operation in five years and possibly the most difficult in history, which affected the US Treasury. commerce, the State Department, and a number of government agencies.
The US FBI, the Cyber and Infrastructure Security Agency (CISA), the Office of the Director of National Intelligence and the National Security Agency (NSA) have blamed the Kremlin on the charge, linking hackers from a group known as APT29 or Cozy Bear to the Russian intelligence services.
The new attack appears to be a continuation of numerous attempts by Russian hackers to “target US government agencies,” Bert said.
On April 15, the US Treasury Department imposed sanctions against Russia for the Solarwinds cyberattack, blacklisting six companies that, according to US data, are connected with the intelligence services.
Among them are the Military Innovative Technopolis “Era”, JSC “Pasit”, the Federal State Autonomous Scientific Institution Scientific Research Institute “Specialized Computing Devices for Protection and Automation” (FGANU NII “Spetsvuzavtomatika”), LLC “NeoBIT”, JSC “AST” (Advanced System Technologies), and JSC Positive Technologies.