俄罗斯团体Midnight Blizzard自10月22日以来以100+美国实体为攻击目标, Russian group Midnight Blizzard carries out spear-phishing targeting 100+ US entities since October 22, with malicious RDP attachments.
Microsoft 已提醒组织注意俄罗斯网络组织 Midnight Blizzard 正在进行的鱼叉式网络钓鱼活动,该活动针对 100 多个实体,包括美国政府机构和非政府组织。 Microsoft has alerted organizations about an ongoing spear-phishing campaign by the Russian cyber group Midnight Blizzard, targeting over 100 entities, including U.S. government agencies and NGOs. 自10月22日以来,这项运动涉及发送带有恶意远程桌面协议附件的电子邮件,允许未经授权进入设备并安装潜在的恶意软件。 Since October 22, the campaign has involved sending emails with malicious Remote Desktop Protocol (RDP) attachments, enabling unauthorized access to devices and potential malware installation. 微软公司建议加强安全措施,包括雇员培训和多要素认证。 Microsoft recommends enhanced security measures, including employee training and multi-factor authentication.