- Category
- Latest news
Russian-Linked Hackers Use Fake Wine Tasting Invites to Breach Diplomatic Networks
- Authors
![Photo of Dariia Mykhailenko]( "Photo of Dariia Mykhailenko")
Cozy Bear, a hacking group previously linked to Russian intelligence, has recently launched a coordinated cyber campaign targeting European diplomatic officials. This was reported by Check Point on April 15.
The attackers distributed fake invitations to wine-tasting events, allegedly issued by a European ministry of foreign affairs.
According to cybersecurity firm Check Point, the group has been impersonating a major European foreign ministry since January. Their phishing emails, masked with refined subject lines like “Wine Tasting Event” and “Diplomatic Dinner”, contained malware designed to infiltrate diplomatic networks.
The campaign extended beyond the European Union, with attackers also targeting embassies of non-EU countries located in Europe, as well as diplomatic personnel stationed in the Middle East.
When asked to identify the specific foreign ministry being impersonated, Check Point threat intelligence lead Sergey Shykevich told Politico only that it was “one of the largest” in the EU. Commenting on the use of wine-themed lures, Shykevich noted: “Someone on the attacker side had a good idea.” As of now, Check Point has not confirmed whether the campaign successfully compromised any networks.
Earlier, Singapore-based crypto exchange Bybit reported a breach involving one of its Ethereum wallets. Blockchain investigator ZachXBT traced the hack back to the notorious Lazarus Group—North Korea’s state-backed cybercriminals known for some of the world’s most high-profile digital breaches.
-924c3c302c27387e19f6c44aaeb98745.png "Photo of Maryna Kulakova")
