A hacking group with connections to the Russian government has attempted to compromise WhatsApp accounts of personnel from non-governmental organizations aiding Ukraine, according to findings from Microsoft Corp.
Researchers from Microsoft reported in a blog post that attackers linked to Russia’s Federal Security Service (FSB) targeted specific individuals by sending emails inviting them to join WhatsApp groups. These phishing emails often pretended to originate from a U.S. government official and included a QR code that allegedly provided information on initiatives supporting Ukraine amidst its ongoing conflict with Russia. Microsoft has not disclosed whether any successful breaches occurred during these attempts.
The cyberattacks have been attributed to a group known as Star Blizzard, which is thought to be state-sponsored. Since October, the U.S. Justice Department, aided by Microsoft, has confiscated or shut down 180 websites associated with this group.
A representative from WhatsApp addressed the issue, emphasizing that the company secures personal communications with end-to-end encryption. Users are advised to click on links only from trusted contacts. The Russian Embassy in Washington has yet to provide a comment regarding these claims.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) stated in December that the Star Blizzard group is “almost certainly” affiliated with Russia’s FSB. CISA highlighted the group’s history of targeting American and British politicians, academics, and individuals in the defense sector. The group is known for researching potential victims on social media, leveraging their professional connections, and creating email accounts that imitate trusted associates.
© 2025 Bloomberg L.P.
(This story has not been edited by NDTV staff and is auto-generated from a syndicated feed.)
