Microsoft Accuses FSB Hackers Of Targeting Foreign Diplomats
The hacker group Secret Blizzard (also known as Turla), which is believed to be linked to Russia's FSB, has been conducting a sophisticated cyber espionage campaign targeting foreign embassies operating within the Russian Federation, Azernews reports.
According to Microsoft, this campaign has been active since at least early 2024, although the specific diplomatic missions affected have not been publicly disclosed.
Experts at Microsoft highlight that this operation marks the first known instance of hackers leveraging government-sanctioned access to Russian Internet Service Providers (ISPs) to carry out attacks.
“While we previously assessed with low confidence that this group might be conducting cyber espionage within Russia against foreign and domestic targets, we can now confirm they possess the capability to operate at the ISP level,” the report states.
The campaign uses a malware known as ApolloShadow, which is installed on devices connected to Russian ISPs and telecommunications networks. This malware tricks devices into trusting malicious websites by mimicking legitimate traffic. Notably, Microsoft suggests that the hackers disguised their malicious software to resemble antivirus programs from Kaspersky Lab, one of Russia's most prominent cybersecurity firms.
Through these methods, the attackers reportedly maintain persistent access to diplomats' devices, likely aiming to collect sensitive intelligence. Microsoft's analysis indicates that the hackers can monitor a large portion of the victims' internet traffic and gain access to confidential login credentials.
This operation underscores the evolving nature of cyber espionage, where state-linked actors increasingly exploit infrastructure-level access to target high-value entities like diplomatic missions. The blending of malware with trusted software further complicates detection and defense, raising concerns about the security of international communications within Russia.
Interestingly, this campaign reveals how cyber threats are becoming more embedded within national infrastructure, blurring the lines between state security operations and espionage-posing new challenges for global cybersecurity frameworks.
Legal Disclaimer:
MENAFN provides the
information “as is” without warranty of any kind. We do not accept
any responsibility or liability for the accuracy, content, images,
videos, licenses, completeness, legality, or reliability of the information
contained in this article. If you have any complaints or copyright
issues related to this article, kindly contact the provider above.
Most popular stories
Market Research

Stratx Launches Compliance-Aware Routing Protocol For Stablecoins, Rwas, And Cross-Border Settlement
- Kucoin Appeals FINTRAC Decision, Reaffirms Commitment To Compliance
- FBS Analysis Shows Ethereum Positioning As Wall Street's Base Layer
- VCUK Launches New Private Equity And Venture Capital Initiative With A Focus On Europe
- Zebu Live 2025 Welcomes Coinbase, Solana, And Other Leaders Together For UK's Biggest Web3 Summit
- Betfury Is At SBC Summit Lisbon 2025: Affiliate Growth In Focus
- Moonx: The Leading Crypto Trading Platform With X1000 Leverage And Unlimited Meme Coin Access
Comments
No comment