A hacking group tied to Russian intelligence has been disrupted, Microsoft and U.S. authorities said on October 3.
American officials say the group tried to break into the computer systems of former U.S. military and intelligence staff as well as NGOs, U.S. companies, and others.
A U.S. court unsealed documents authorizing Microsoft and the Department of Justice to seize more than 100 website domain names associated with the hacking group, known as the Callisto Group of Star Blizzard.
“This seizure is part of a coordinated response with our private sector partners to dismantle the infrastructure that cyberespionage actors use to attack U.S. and international targets,” said U.S. Attorney Ismail J. Ramsey for the Northern District of California.
The group targeted individuals with e-mails that appeared to come from a trusted source, a tactic known as spear phishing, the U.S. Justice Department said in a news release. Once links inside these e-mails were opened, the hackers would attempt to access the victims’ internal systems as a way of stealing information and disrupting their activities.
Star Blizzard's actions were persistent and sophisticated, according to Microsoft, and the group often did detailed research on its targets before launching an attack. Star Blizzard also went after civil society groups, U.S. companies, American military contractors, and the Department of Energy, which oversees many nuclear programs, the company said.
Authorities haven't provided details about Star Blizzard's effectiveness but said they expect Russia to keep deploying hacking and cyberattacks against Washington and its allies, and the United States pledged to continue its vigilance.
"With the continued support of our private sector partners, we will be relentless in exposing Russian actors and cybercriminals and depriving them of the tools of their illicit trade,” Deputy Attorney General Lisa Monaco said in the Justice Department statement.
U.S. authorities charged two Russian men last year in connection with Star Blizzard's past actions. Both are believed to be in Russia.
Along with American targets, Star Blizzard went after people and groups throughout Europe and in other NATO countries, the Justice Department said. Many had supported Ukraine following Russia's invasion.