Recently, cybersecurity researchers have uncovered a new set of Russian cyberoperations targeting Ukraine. Many approaches were used, ranging from simple spam emails to spread war-related disinformation about heating, drugs, and food shortages to spear-phishing campaigns aimed at Ukrainian defense companies and EU agencies to try to gain access to email credentials. The content of the emails was oftentimes disturbing; for instance, some emails encouraged Ukranians to amputate limbs to avoid joining the war effort. Furthermore, the pro-Kremlin “Doppelganger” network targeted Germany with anti-government and anti-Ukraine propaganda; links suggest potential ties between Doppelganger and Russian cyber espionage group APT28. After these attacks, one the domains used to propagate the emails is now being used for a pharmacy scam and companies such as Meta are actively attempting to take down disinformation networks.
