SBU, FBI Uncover Russian Cyber Campaign Targeting Officials

Russian intelligence services are systematically targeting the messaging accounts of officials, military personnel, politicians, and activists in Ukraine, Europe, and the US, according to Ukraine’s Security Service (SBU) and the US Federal Bureau of Investigation (FBI).

In a statement on Thursday, the SBU said the cyber campaign aims to gain access to sensitive military, political, and economic information, as well as users’ personal data shared through messaging platforms.

According to the agency, Russian operatives are using various phishing techniques to steal login credentials and compromise accounts.

One of the most common methods involves sending text messages disguised as official support from messaging platforms to trick users into revealing their passwords.

The SBU noted that such messages are often sent in the early morning, when users may be more vulnerable due to fatigue and reduced alertness.

The agency warned that Russian intelligence services are targeting not only organizations, public officials, and military personnel, but also the personal messaging accounts of ordinary Ukrainian citizens.

It urged individuals to regularly review active sessions on their messaging platforms and disconnect unknown devices.

Stronger digital security habits

The SBU advised users to enable two-factor authentication using a strong alphanumeric password, avoid suspicious links and attachments, and never share verification codes, passwords, or account recovery keys.

Other Topics of Interest

Ukraine War: Should Europe Mediate?

Russia has been waging a full-scale war of aggression against Ukraine since 2022 and so far all attempts at negotiations have failed to end the conflict.

The agency also warned users not to scan QR codes received from unknown bots or users, saying attackers can use them to connect unauthorized devices to victims’ messaging accounts.

Previously, in April, the SBU, together with the FBI and European law enforcement agencies, said it had disrupted a large-scale cyber espionage operation allegedly run by Russia’s military intelligence.

According to the agency, hackers compromised Wi-Fi routers in Ukraine, the EU, and the US to intercept sensitive data. This included communications involving Ukrainian officials, military personnel, and defense industry employees.

The SBU said the joint operation blocked more than 100 servers and secured hundreds of compromised routers in Ukraine.