🇬🇧 Phishing campaigns by the Nobelium intrusion set
🇬🇧 Phishing campaigns by the Nobelium intrusion set
محتويات التنبيه:
معلومات :
| المرجع | CERTFR-2021-CTI-011 |
| العنوان | 🇬🇧 Phishing campaigns by the Nobelium intrusion set |
| تاريخ الاصدار الأول | 06 décembre 2021 |
| تاريخ أخر تحديث | 06 décembre 2021 |
| المصادر | |
| المرفقات | Aucune(s) |
المخاطر:
الأنظمة المثأثرة:
ملخص الثغرة:
الحلول من هده الثغرة:
ANSSI has observed a number of phishing campaigns directed against French entities since February 2021. Technical indicators correspond to activities associated with the Nobelium intrusion set. These campaigns have succeeded in compromising email accounts belonging to French organisations, and then using these to send weaponised emails to foreign institutions. Moreover, French public organisations have also been recipients of spoofed emails sent from supposedly compromised foreign institutions. Overlaps have been identified in the tactics, techniques & procedures (TTP) between the phishing campaigns monitored by ANSSI and the SOLARWINDS supply chain attack in 2020.
المصادر: