| SYMBOL | COMMON_NAME | aka. SYNONYMS |
A Russia-linked threat actor tracked as TAG-53 is running phishing campaigns impersonating various defense, aerospace, and logistic companies, according to The Record by Recorded Future. Recorded Future’s Insikt Group identified overlaps with a threat actor tracked by other companies as Callisto Group, COLDRIVER, and SEABORGIUM.
There are currently no families associated with this actor.
| 2022-12-07
⋅
KnowBe4
⋅
Russian Threat Actor Impersonates Aerospace and Defense Companies TAG-53 |
| 2022-12-05
⋅
Recorded Future
⋅
Exposing TAG-53’s Credential Harvesting Infrastructure Used for Russia-Aligned Espionage Operations TAG-53 |
| 2022-12-05
⋅
Recorded Future
⋅
Exposing TAG-53’s Credential Harvesting Infrastructure Used for Russia-Aligned Espionage Operations TAG-53 |