FSB‑linked hackers target government WhatsApp accounts

The pro-Russian hacking group Star Blizzard, associated with the Russian Federal Security Service (FSB), attempted to hack into the WhatsApp accounts of government officials from several countries.

Read also: Is Putin preparing Russians for war? This decision is proof of desperation

Hackers impersonated American officials, as revealed by the British newspaper "The Guardian", citing a communication from Microsoft's threat team.

Star Blizzard utilised the method of sending fake group invitations on WhatsApp, which supposedly were intended to support Ukrainian non-governmental organisations.

The Microsoft Threat Intelligence team warns that opening the QR code contained in such messages could have allowed hackers to access the victim's messages on WhatsApp. However, it remains unclear if they managed to steal any data.

The campaign with fake invitations ended in November, but Microsoft notes that it signifies a change in Star Blizzard's tactics. Users are advised against clicking on links from unknown senders.

"The Guardian" highlights that the UK's National Cyber Security Centre (NCSC) links Star Blizzard with the FSB, accusing the group of attempting to undermine trust in policies in the UK and other countries.

Star Blizzard most frequently targets individuals associated with governments, diplomacy, and researchers focusing on defence policy and international relations, especially in the context of Russia and aid for Ukraine.

In 2023, the NCSC reported attacks on British MPs, universities, and journalists aimed at interfering with British politics and democracy. The group has been described as "almost certainly subordinate" to the FSB.

In response to these reports, the government in London imposed sanctions on two members of Star Blizzard, including an FSB officer.