TA 499: Russian propoganda aligned with Russia and getting people to get on video calls

I believe I’ve heard of these guys, but this is a great write up by Proof Point that was boosted through Mastodon.

Here are the key takeaways:

• TA499, also known as Vovan and Lexus, is a Russia-aligned threat actor that has aggressively engaged in email campaigns since at least 2021. 
• The threat actor’s campaigns attempt to convince high-profile North American and European government officials as well as CEOs of prominent companies and celebrities into participating in recorded phone calls or video chats.
• The calls are almost certainly a pro-Russia propaganda effort designed to create negative political content about those who have spoken out against Russian President Vladimir Putin and, in the last year, opposed Russia’s invasion of Ukraine.
• TA499 is not a threat to take lightly due to the damage such propaganda could have on the brand and public perception of those targeted as well as the perpetuation of disinformation.

This report by Proofpoint covers things from 2021-2022.

Headings include:

• Overview
• Key Takeaways
• Critiques of Putin, Russia Spur TA499 Action in 2022
• A Return to Early TA499 Themes
• The World is Watching…On YouTube (or RUTUBE)
• Conclusion
• Indicators of Compromise (IOCs)

They’ve got lots of infrastructure and the email you get alone is not malicious. The point of the email is to get you to agree to video or phone calls. After tthe receipt of the email, and agreement, you’ll move to video. At this point, they’ll get you to agree to whatever they want you to.

I’ve never been in favor of this war. It doesn’t do anyone any good. How many people have died since that war broke out last year?

I hope Ukraine continues to fight well. They’re not taking any crap from this president, who I think has lost his mind.

The article this time is titled Don’t Answer That! Russia-Aligned TA499 Beleaguers Targets with Video Call Requests .

This is something that we should be aware of, nothing more.

You never know what might be sent out by email, so be aware.