CYBERSECURITY BULLETIN

SolarWinds hackers are back with another cyberattack spree

It came to light when the Russian-backed group gained control of an email marketing platform used by USAID

Russia-based Nobelium cybercrime group is behind one of the biggest and most notorious cyberattacks ever. The infamous SolarWinds attack apparently targeted nine key US federal agencies and about 100 US companies. And while the American cybersecurity agencies are still reeling from the attack, months after they were discovered, the Nobelium group seems to be striking back.

Microsoft is now reporting that Nobelium is currently conducting a phishing campaign after the Russian-backed group managed to take control of the account used by USAID on the email marketing platform Constant Contact. According to the report, Nobelium’s phishing campaign has targeted around 3,000 accounts linked to government agencies, think tanks, consultants, and non-governmental organizations.

Although the U.S appears to be the single-largest recipient of the malicious email campaign, it is believed to have reached at least 24 more countries. The phishing email includes a link, which when clicked creates a backdoor called ‘NativeZone’. This backdoor vulnerability can enable hackers to…