
image credit: pixabay
The threat actor, identified by Microsoft as SEABORGIUM, has been documented since at least 2017 actively conducting cyberespionage attacks against military personnel, government officials, think tanks, and journalists in Europe and the South Caucasus.
Redmond’s security research and threat hunting teams partnered with abuse teams in Microsoft to disable OneDrive and other Microsoft-linked accounts and beef up its Defender SmartScreen technology to block phishing domains.