Russian trolls and bots are back, targeting Tuesday’s U.S. midterms.



birdbotSteven Lee Myers at the NYT had the scoop on this typical Russian influence operation which really is social engineering at scale: "The user on Gab who identifies as Nora Berka resurfaced in August after a yearlong silence on the social media platform, reposting a handful of messages with sharply conservative political themes before writing a stream of original vitriol.

The posts mostly denigrated President Biden and other prominent Democrats, sometimes obscenely. They also lamented the use of taxpayer dollars to support Ukraine in its war against invading Russian forces, depicting Ukraine’s president as a caricature straight out of Russian propaganda.

The fusion of political concerns was no coincidence. The account was previously linked to the same secretive Russian agency that interfered in the 2016 presidential election and again in 2020, the Internet Research Agency in St. Petersburg, according to the cybersecurity group Recorded Future.

It is part of what the group and other researchers have identified as a new, though more narrowly targeted, Russian effort ahead of Tuesday’s midterm elections. The goal, as before, is to stoke anger among conservative voters and to undermine trust in the American electoral system. This time, it also appears intended to undermine the Biden administration’s extensive military assistance to Ukraine.

“It’s clear they are trying to get them to cut off aid and money to Ukraine,” said Alex Plitsas, a former Army soldier and Pentagon information operations official now with Providence Consulting Group, a business technology company." 

Article continues at the NYT


Can hackers spoof an email address of your own domain?

DSTAre you aware that one of the first things hackers try is to see if they can spoof the email address of your CEO? If they are able to commit "CEO Fraud", penetrating your network is like taking candy from a baby.

Now they can launch a "CEO fraud" spear phishing attack on your organization, and that type of attack is very hard to defend against, unless your users are highly ‘security awareness’ trained.

Find out now if your domain can be spoofed. The Domain Spoof Test (DST) is a one-time free service. Run this test so you can address any mail server configuration issues that are found.

Try To Spoof Me!

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

https://www.knowbe4.com/domain-spoof-test/



Subscribe to Our Blog


Comprehensive Anti-Phishing Guide




Get the latest about social engineering

Subscribe to CyberheistNews