← Back to Actors
Star Blizzard
Star BlizzardSEABORGIUMCallisto GroupTA446COLDRIVER
[Star Blizzard](https://attack.mitre.org/groups/G1033) is a cyber espionage and influence group originating in Russia that has been active since at least 2019. [Star Blizzard](https://attack.mitre.org/groups/G1033) campaigns align closely with Russian state interests and have included persistent phishing and credential theft against academic, defense, government, NGO, and think tank organizations in NATO countries, particularly the US and the UK.(Citation: Microsoft Star Blizzard August 2022)(Citation: CISA Star Blizzard Advisory December 2023)(Citation: StarBlizzard)(Citation: Google TAG COLD...
20
Techniques
15
Covered
5
Gaps
75%
Coverage
Coverage15/20
GAPS (5)
COVERED (15)
T1059.007JavaScript63 det.T1078Valid Accounts297 det.T1114.002Remote Email Collection18 det.T1114.003Email Forwarding Rule15 det.T1204.002Malicious File441 det.T1539Steal Web Session Cookie16 det.T1550.004Web Session Cookie5 det.T1566.001Spearphishing Attachment979 det.T1583Acquire Infrastructure1 det.T1583.001Domains62 det.T1588.002Tool13 det.T1589Gather Victim Identity Information1 det.T1598.002Spearphishing Attachment2 det.T1598.003Spearphishing Link312 det.T1608.001Upload Malware3 det.