Microsoft on Thursday said it has observed the same group behind the campaign against SolarWinds using new tactics involving a wide-scale email phishing campaign to target thousands of people, and in some cases masquerading as part of the U.S. Agency for International Development.
The group, which Microsoft calls “NOBELIUM,” historically targets government organizations, think tanks, military, IT service providers, health technology and research institutions and telecommunications companies, according to Microsoft’s blog post. The company’s threat intelligence team has been tracking the group’s email campaign since early this year.
