Russian FSB cyber actor Star Blizzard continues worldwide spear-phishing campaigns

Published
12/15/2023

The National Cyber Security Centre assess that Star Blizzard, a group that has been identified using cyber operations to target high profile individuals and entities, are almost certainly subordinate to Centre 18 of Russia’s Federal Security Service (FSB), with the aim of interfering with UK politics and our democratic processes.

The National Cyber Security Centre assess that Star Blizzard, a group that has been identified using cyber operations to target high profile individuals and entities, are almost certainly subordinate to Centre 18 of Russia’s Federal Security Service (FSB), with the aim of interfering with UK politics and our democratic processes. The Russian Intelligence Service (RIS) also routinely target politicians, journalists, universities & academics, public sector organisations, NGO’s, UK CNI organisations and UK Think Tanks, many of whom play a key role in UK democracy.  

The NCSC and their partners from the United States, Australia, Canada & New Zealand have issued a new cyber security advisory, sharing technical details about how the actors carry out attacks and how you can defend against them.

Russian FSB cyber actor Star Blizzard continues worldwide… - NCSC.GOV.UK.

NCSC has also published refreshed guidance for individuals at higher risk of being targeted by capable actors     to help improve cyber resilience to a range of potential cyber threats.

Guidance for high-risk individuals on protecting your accounts and devices

For staff responsible for the cyber security and the implementation of cyber security defence. NCSC has produced guidance to defend your organisation from email phishing attacks, as this is a common attack vector used by the Russian Intelligence Service. 

Phishing attacks: defending your organisation - NCSC.GOV.UK

Staff within smaller organisations will also find this guidance useful, please also refer to the NCSC’s Small Business Guide.

Small Business Guide: Cyber Security - NCSC.GOV.UK

In the UK you can report related suspicious activity to the NCSC:  https://report.ncsc.gov.uk/