Same Sea, New Phish: Russian Government-Linked Social Engineering Targets App-Specific Passwords

Citizen Lab documents a sophisticated, targeted social-engineering campaign that convinced expert Keir Giles to create and share App-Specific Passwords (ASPs), enabling account compromise. Google linked the operation to UNC6293 (low-confidence to APT29), blocked the attacker, and the report highlights ASP-focused social engineering as an emerging TTP with provided indicators and mitigation advice.