Russian APT28 Runs Credential-Stealing Campaign Targeting Energy and Policy Organizations
Russian-linked APT28 ran credential-harvesting attacks in 2025 using fake Microsoft, Google, and VPN login pages, PDF lures, and legitimate web servic
More info