Russian state-sponsored threat actors have been linked to a fresh set of credential harvesting attacks targeting individuals associated with a Turkish energy and nuclear research agency, as well as staff affiliated with a European think tank and organizations in North Macedonia and Uzbekistan.
The activity has been attributed to APT28 (aka BlueDelta), which was attributed to a "sustained"



Source: TheHackerNews
Source Link: https://thehackernews.com/2026/01/russian-apt28-runs-credential-stealing.html