EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • Russian Intelligence-Linked Hackers Storm-2372 Target Instant Messaging Services
    • Home
    • Cybercrime
    • Russian Intelligence-Linked Hackers Storm-2372 Target Instant Messaging Services

    Russian Intelligence-Linked Hackers Storm-2372 Target Instant Messaging Services

    Written by
    The Editorial Team
    02.19.25
    Cybercrime
    01
    MIN
    Russian Intelligence-Linked Hackers Storm-2372 Target Instant Messaging Services
    Russian Intelligence-Linked Hackers Storm-2372 Target Instant Messaging Services
    Russian Intelligence-Linked Hackers Storm-2372 Target Instant Messaging Services
    Image From the Sea to the Servers: Behind the Scenes of the Cyber-Maritime War in the Gulf.
    Cyber stability
    05.26.26 Cyber stability
    Next article
    From the Sea to the Servers: Behind the Scenes of the Cyber-Maritime War in the Gulf.
    Read
    05
    MIN
    Image GitHub confirms it was hacked by TeamPCP
    Cybercrime
    05.21.26 Cybercrime
    Next article
    GitHub confirms it was hacked by TeamPCP
    Read
    01
    MIN
    Image A 0-day attack against Huawei routers may have caused Luxembourg’s telecom outage in 2025
    Cybercrime
    05.21.26 Cybercrime
    Next article
    A 0-day attack against Huawei routers may have caused Luxembourg’s telecom outage in 2025
    Read
    01
    MIN
    Image Massive data breach hits Asian football two months before the World Cup
    Cybercrime
    04.29.26 Cybercrime
    Next article
    Massive data breach hits Asian football two months before the World Cup
    Read
    01
    MIN
    Microsoft’s security teams published a report on February 13, 2025, detailing phishing attacks carried out by Storm-2372, a hacker group affiliated with Russian intelligence. The cybercriminals targeted users of instant messaging apps such as WhatsApp, Signal, and Microsoft Teams with fake invitations to online meetings.

    This campaign also involved social engineering tactics, as the attackers impersonated real individuals—colleagues or potential clients of their victims. They took the time to establish a trusted relationship before inviting the target to a video call via a link leading to a fake login page for such a service.

    This fake page allowed Storm-2372 to steal login credentials and passwords before requesting a two-factor authentication code. This enabled the hackers to access and take control of the victim’s account, granting them entry to numerous sensitive services.

    The phishing campaign, which began in August 2024, primarily targeted European governments and Western companies in the tech, defense, energy, and healthcare sectors.

    The Editorial Team
    02.19.25
    Articles by the same author:
    1
    05.27.26 Cyber stability
    The ECB summons European banks to discuss AI-related risks
    Read
    01
    MIN
    2
    05.25.26 Cybercrime
    France and the Netherlands lead the dismantling of First VPN, a service popular among cybercriminals
    Read
    01
    MIN
    3
    05.25.26 Cybercrime
    Arrest of Canadian man suspected of running the KimWolf botnet
    Read
    01
    MIN
    4
    05.25.26 Digital transformation
    Canada: government ready to amend its law on law enforcement access to data
    Read
    01
    MIN
    Image From the Sea to the Servers: Behind the Scenes of the Cyber-Maritime War in the Gulf.
    Cyber stability
    05.26.26 Cyber stability
    Next article
    From the Sea to the Servers: Behind the Scenes of the Cyber-Maritime War in the Gulf.
    Read
    05
    MIN
    Image GitHub confirms it was hacked by TeamPCP
    Cybercrime
    05.21.26 Cybercrime
    Next article
    GitHub confirms it was hacked by TeamPCP
    Read
    01
    MIN
    Image A 0-day attack against Huawei routers may have caused Luxembourg’s telecom outage in 2025
    Cybercrime
    05.21.26 Cybercrime
    Next article
    A 0-day attack against Huawei routers may have caused Luxembourg’s telecom outage in 2025
    Read
    01
    MIN
    Image Massive data breach hits Asian football two months before the World Cup
    Cybercrime
    04.29.26 Cybercrime
    Next article
    Massive data breach hits Asian football two months before the World Cup
    Read
    01
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.