ANSSI Alerts of Nobelium Targeting French Organizations

Industry: Diplomatic | Level: Strategic | Source: ANSSI

French national cyber-security agency, ANSSI, raised an alert detailing Nobelium phishing campaigns directed at French entities. The campaign observation began in February 2021 with noticed escalation in May. The French email accounts are compromised and then used to send weaponized emails to foreign institutions in the diplomatic sector. The threat group is utilizing various hosting methods, mainly OVH SAS, Hydra Communications Ltd, M247 Ltd and 12 additional observed hosting providers.