Beginning in 2022, the Microsoft Threat Intelligence Center (MSTIC) has been monitoring SEABORGIUM phishing campaigns targeting more than 30 organizations, Occasional attacks on other Baltic, Nordic and Eastern European countries are primarily aimed at NATO countries, particularly in the US and UK.
The Microsoft Threat Intelligence Center (MSTIC) monitored the SEABORGIUM operations and took action to disrupt them. SEABORGIUM is a Russian-born threat actor whose goal and victimization closely coincide with the interests of the Russian state. Its campaigns include frequent phishing and credential theft campaigns. The SEABORGIUM infiltration has also been linked to hack-and-leak campaigns, using stolen and leaked data to shape narratives in targeted countries. However, it cannot be ruled out that subsidiaries of the group have current or past ties to criminal or other non-state ecosystems.
Campaign Target: NATO Countries
SEABORGIUM is primarily aimed at NATO countries, particularly the US and UK, with occasional attacks on other Baltic, Nordic and Eastern European countries. Such attacks in the months leading up to the Russian invasion involved Ukrainian government territory and organizations involved in supporting roles in the war in Ukraine. Despite some attacks on these organizations, Microsoft assesses that Ukraine is unlikely to be the primary focus for this actor; However, it is a reactive area of focus and one of many different goals for the actor.
Defense and intelligence consulting firms targeted
Within the target countries, SEABORGIUM focuses primarily on defense and intelligence consulting, non-governmental organizations (NGOs) and intergovernmental organizations (IGOs), think tanks and academia. SEABORGIUM has a keen interest in reaching individuals, as 30% of Microsoft’s national information regarding SEABORGIUM activities is sent to Microsoft consumer email accounts. SEABORGIUM has been seen targeting former intelligence officers, Russian affairs experts and Russian citizens abroad.
About Microsoft Germany
Microsoft Deutschland GmbH was founded in 1983 as a German subsidiary of Microsoft Corporation (Redmond, USA). Microsoft is committed to empowering every individual and every organization on the planet to achieve more. This challenge can only be mastered together, which is why diversity and inclusion have been firmly ingrained in the corporate culture since its inception. As the world’s leading manufacturer of productive software solutions and advanced services in the era of Intelligent Cloud and Intelligent Edge, as well as a developer of innovative hardware, Microsoft sees itself as a partner to its customers to help them Benefit from digital transformation. Security and privacy are top priorities when developing solutions. As the world’s largest contributor, Microsoft drives open source technology through its flagship developer platform, GitHub. Along with LinkedIn, the largest career network, Microsoft promotes professional networking around the world.