Microsoft Threat Intelligence Center has recently noticed new cyberattacks originating from Strontium, also known as Fancy Bear/APT28. Ahead of the Tokyo Summer Games in 2020, Strontium is targeting sporting and anti-doping organizations around the world.
Microsoft mentioned that 16 national and international sporting and anti-doping organizations were targeted in these attacks. The worrying news is that some of these attacks were successful. Microsoft is already alerting customers about these attacks and is helping affected customers to secure compromised accounts.
Strontium used the following methods for these attacks:
Spear-phishing, password spray, exploiting internet-connected devices and the use of both open-source and custom malware.
Strontium routinely uses the above same methods to target governments, militaries, think tanks, law firms, human rights organizations, financial firms and universities around the world.