SolarWinds attackers compromise email marketing accounts to hide phishing attacks


A Constant Contact booth at the eAltitude Summit in 2020. Microsoft researchers reported Thursday that the APT group known as Nobelium compromised a customer of Constant Contact, an online marketing services company primarily used by small advertising companies and mass advertising is used. Mailing purposes. (“Nicole Breanne – Alt Summit 2020 – Sponsors – Constant Contact-8280” by Altitude Summit is licensed under CC BY-NC 2.0)

The Russian government-sponsored hackers behind the SolarWinds supply chain attack relied on a much more cybercrime-themed playbook for their latest reported attack and launched an extensive phishing campaign aimed at targeting malware through weapons-grade communications sent to businesses by a compromised email marketing account.

Despite the high-profile nature of the threat group, the lessons for email marketing account owners and their recipients are the same as for most other phishing attacks. Experts say that email service users must apply proper password hygiene and use authentication tools like multi-factor authentication to ensure no one takes attachments to their accounts, even if they come from a seemingly trustworthy source.


About Author

Leave A Reply