Russian Hackers Breach UK Government Email Accounts in Major Cyberattack
ID: a6ce4c91-e851-50d8-8352-43a805a376b4
STIX ID: report--a6ce4c91-e851-50d8-8352-43a805a376b4
Feed Name: ThreatCluster
Threat Score
Russian-linked attackers (suspected APT28) exploited a Fortinet firewall vulnerability affecting over 80,000 devices to harvest UK government and Foreign Office email credentials, which are being traded on dark web forums; the active campaign used DNS hijacking techniques and has prompted NCSC warnings due to potential catastrophic follow-on ransomware and impacts to critical services.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
