Google uncovers Russian phishing campaign targeting Ukrainian news provider
The tech giant has also recorded repeated DDoS attempts against the Ukrainian government
Russian hackers have conducted several phishing campaigns targeting users of one of Ukraine’s most popular online news providers.
The phishing emails had been sent from a large number of compromised non-Google accounts, and included links to newly-created, attacker-controlled Blogspot domains, which redirected targets to credential phishing pages with the following domains:
The Blogspot domains have since been taken down, Google announced on Monday. The credential phishing pages are flagged as “dangerous” on the Google Chrome browser, as part of Google’s Safe Browsing service. Launched in 2007, the service identifies unsafe websites across the web and notifies users and website owners of potential harm with an attention-grabbing, red warning message.
FancyBear’s phishing campaign against Ukr.net is just one of many attempts by Russian and Belarusan threat actors to target Ukrainian organisations.
The best defence against ransomware
How ransomware is evolving and how to defend against itFree download
The tech giant has also recorded repeated DDoS attempts against Ukraine’s Ministry of Foreign Affairs, Ministry of Internal Affairs, as well as services like Liveuamap that are designed to help people find information. This has prompted Google to expand the eligibility for its free DDoS protection tool known as Project Shield, which sees Google absorb the influx of “bad traffic” and keep the targeted website online.
Google said that “over 150 websites in Ukraine, including many news organisations, are using the service” and encouraged “all eligible organisations to register for Project Shield”.
Eligibility is determined on a rolling basis, with Google accepting Google Account holders that manage or own a website in the news, human rights and political sectors.
Activation playbook: Deliver data that powers impactful, game-changing campaigns
Bringing together data and technology to drive better business outcomesFree Download
In unpredictable times, a data strategy is key
Data processes are crucial to guide decisions and drive business growthFree Download
Achieving resiliency with Everything-as-a-Service (XAAS)
Transforming the enterprise IT landscapeFree Download
What is contextual analytics?
Creating more customer value in HR software applicationsFree Download