COLDRIVER, a threat actor associated with Russia’s Federal Security Service (FSB), has been involved in credential theft activities since 2017, continuously enhancing their detection evasion capabilities and employing tactics such as setting up lookalike domains and utilizing email marketing services to target cloud-based email providers.
View full story…
Microsoft Warns of COLDRIVER’s Evolving Evading and Credential Stealing Tactics
