Since early 2022, the Microsoft Threat Intelligence Center (MSTIC) has been monitoring SEABORGIUM phishing campaigns targeting over 30 organizations, primarily to NATO countries, notably the US and UK with occasional attacks on other Baltic, Nordic and Eastern European countries.
The Microsoft Threat Intelligence Center (MSTIC) monitored SEABORGIUM campaigns and took action to disrupt them. SEABORGIUM is a Russian-born threat actor whose goals and victimology closely align with the interests of the Russian state. Its campaigns include persistent phishing and credential theft campaigns. The SEABORGIUM intrusion has also been linked to hack-and-leak campaigns, using stolen and leaked data to shape narratives in target countries. Although one cannot rule out that supporting elements of the group have current or past ties to criminal or other non-state ecosystems.
Campaign target: NATO countries
SEABORGIUM is primarily aimed at NATO countries, particularly the US and UK, with occasional attacks on other Baltic, Nordic and Eastern European countries. Such attacks included Ukraine's government sector and organizations involved in supporting roles in the war in Ukraine in the months leading up to the Russian invasion. Despite some attacks on these organizations, Microsoft assesses that Ukraine is unlikely to be a primary focus for this actor; However, it is most likely a reactive area of focus for the actor and one of many different targets.
Defense and intelligence consulting firms targeted
Within target countries, SEABORGIUM mainly focuses on defense and intelligence consultancies, non-governmental organizations (NGOs) and intergovernmental organizations (IGOs), think tanks and academia. SEABORGIUM has a keen interest in reaching out to individuals as well, as 30% of Microsoft's national notifications related to SEABORGIUM activities are sent to Microsoft consumer email accounts. SEABORGIUM has been observed targeting former intelligence officials, experts on Russian affairs and Russian citizens abroad.
More at Microsoft.com
About Microsoft Germany Microsoft Deutschland GmbH was founded in 1983 as the German subsidiary of Microsoft Corporation (Redmond, USA). Microsoft is committed to empowering every person and company in the world to achieve more. This challenge can only be mastered together, which is why diversity and inclusion have been firmly anchored in the corporate culture from the very beginning. As the world's leading manufacturer of productive software solutions and modern services in the age of intelligent cloud and intelligent edge, as well as a developer of innovative hardware, Microsoft sees itself as a partner to its customers to help them benefit from the digital transformation. Security and data protection have top priority when developing solutions. As the world's largest contributor, Microsoft is driving open source technology through its leading developer platform GitHub. With LinkedIn, the largest career network, Microsoft promotes professional networking worldwide.