logo

Russian Hackers Breach UK Government Email Accounts in Major Cyberattack

ID: a6ce4c91-e851-50d8-8352-43a805a376b4

STIX ID: report--a6ce4c91-e851-50d8-8352-43a805a376b4

Feed Name: ThreatCluster

Threat Score
90/100

Date Published: 2026-07-05

Date Updated: 2026-07-06

...
...

Russian-linked attackers (suspected APT28) exploited a Fortinet firewall vulnerability affecting over 80,000 devices to harvest UK government and Foreign Office email credentials, which are being traded on dark web forums; the active campaign used DNS hijacking techniques and has prompted NCSC warnings due to potential catastrophic follow-on ransomware and impacts to critical services.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.