A British Member of Parliament (MP) has revealed that his personal email account was hacked by a Russian threat actor.
Stuart MacDonald of the Scottish National Party (SNP) highlighted the spear phishing incident. Tweet Released on February 8th.
“Over the past few weeks, I have been dealing with sophisticated and targeted spear-phishing hacks targeting my personal email account and a personal email account owned by one of our staff members.These hacks are criminal.”
Former SNP defense spokesperson MacDonald continued: We want to assure voters that their information is secure. My personal account will not be used for precinct or parliamentary business. “
He added that he is working with Congressional security teams and the National Cyber Security Center (NCSC) to ensure all inboxes are secure. Additionally, McDonald’s has confirmed that it is not actively using compromised personal accounts.
However, it acknowledges that “some of the stolen information may be published online.”
McDonald told the BBC that he received the message in January 2023. This message was sent from a staff member’s actual email address.
The message said it was accompanied by a password-protected document containing updates on the military situation in Ukraine. McDonald said this was not unusual given his previous position as SNP defense spokesman, and that over the years he has taken an active interest in Ukraine, having been awarded the Order of Merit by the Ukrainian government. That’s why he said it’s not uncommon.
Clicking on the document took the MP to the login page for the email account he was using. However, when I entered my password, I got a blank page.
A few days later, the member of staff who allegedly sent the message told McDonald’s that they had locked out their personal emails due to suspicious activity. I answered no.
McDonald was advised to contact the NCSC about this suspicious activity. NCSC worked with Congressional security teams to investigate the email and attachments. They suspect a group backed by the Russian government was behind the attack.
Mr Macdonald told the BBC: “I can expect them to manipulate and forge some of that content. I want to get ahead of it so that a disinformation attack against me can be discredited before it becomes public.” I have.”
In a Twitter thread, McDonald said he wanted to raise awareness of the phishing threat, stating: When I talk to others who have had this happen, it’s easy to see that most of them are cybersecurity conscious and have good practices, so anyone can fall victim. “
Legislators experience reflects NCSC January 2023 recommendation on spear-phishing attacks by Russian and Iranian threat actors targeting specific sectors and individuals in the political world, including politicians, journalists and activists doing.
The advisory states that Russia-based threat actor SEABORGIUM and Iran-based group TA453 have launched highly targeted and compelling phishing attacks to steal login credentials and use highly sensitive I warned you that they were trying to access and steal your emails and documents.
Regarding this article, KnowBe4’s leading security awareness advocate, Javvad Malik, said: Method.
“This appears to be a targeted attack. The attackers researched and sent an email they knew was likely to defraud the victim.”
