Microsoft: Russian hackers spy on foreign embassies in Moscow

Microsoft: Russian hackers spy on foreign embassies in Moscow

report
Ukrinform
The Russian hacker group Turla, posing as a well-known cybersecurity company and using Russian internet providers, spied on foreign embassies in Moscow.

This was reported by Bloomberg, citing a Microsoft report released on Thursday, according to Ukrinform.

According to Microsoft, the attackers, known as Turla or Secret Blizzard, carried out a “large-scale” cyber espionage campaign, using Russian internet providers to carry out their hacking attacks. The hackers disguised their malware as software from the Russian company Kaspersky Lab. After gaining access to Russian providers, the hackers targeted foreign embassies in Moscow, redirecting their victims' Internet traffic and spreading malware to collect intelligence, the report said. Microsoft declined to name the targets Turla was targeting.

The malware, known as ApolloShadow, breaks computer encryption, turning their internet activity into easily readable data, including web browsing and confidential account information, Microsoft said.

Turla has been known for its activities for over 25 years. The U.S. government has stated that it is a division of the Russian Federal Security Service. In 2023, the U.S. Department of Justice announced that it had destroyed an extensive network of computers that Turla used to carry out attacks on users around the world on behalf of the Kremlin.

Read also: US at UN: China has become key enabler of Russia's aggression

And after senior U.S. national security officials suggested that the Russian government influenced Kaspersky Lab, sales of the company's products were banned in the U.S.

According to Microsoft, Russian domestic interception systems, such as the System for Operative Investigative Activities (SORM), likely play a key role in conducting these large-scale operations. SORM is the legally established basis for domestic wiretapping and surveillance in Russia, allowing the FSB and other Russian law enforcement and intelligence agencies to conduct surveillance.

As reported by Ukrinform, the European Union condemns Russia's hybrid campaigns, which are aimed at threatening and undermining the security, stability, and democratic foundations of the bloc, its member states, and partners.

Photo: Freepik/DC Studio

More news

Topics

Agency

While citing and using any materials on the Internet, links to the website ukrinform.net not lower than the first paragraph are mandatory. In addition, citing the translated materials of foreign media outlets is possible only if there is a link to the website ukrinform.net and the website of a foreign media outlet. Materials marked as "Advertisement" or with a disclaimer reading "The material has been posted in accordance with Part 3 of Article 9 of the Law of Ukraine "On Advertising" No. 270/96-VR of July 3, 1996 and the Law of Ukraine "On the Media" No. 2849-Х of March 31, 2023 and on the basis of an agreement/invoice.

Online media entity; Media identifier - R40-01421.

© 2015-2025 Ukrinform. All rights reserved.

Extended searchHide extended search
By period:
-