Microsoft catches Russian hackers targeting foreign embassies

Microsoft has reported that a Russian hacking group, known as Strontium, has been targeting foreign embassies with the aim of installing a malicious TLS root certificate. This certificate could then be used for intelligence gathering purposes, potentially compromising secure communications. The tech giant has taken legal action to disrupt the hackers' activities, obtaining a court order to seize domains associated with the attack. Microsoft's Digital Crimes Unit has also worked with partners to block the malicious domains and infrastructure. The report highlights the ongoing threat of state-sponsored cyber attacks, with Russia-linked groups continuing to target diplomatic and government organizations. Microsoft's intervention demonstrates its commitment to combating such threats and protecting the integrity of digital infrastructure. The incident serves as a reminder of the importance of robust cybersecurity measures and the need for collaboration between tech companies, governments, and international organizations to address the evolving landscape of global cyber threats.