THE US government has announced rewards of up to $10 million for information about two Russian-linked cyber threat groups, UNC5792 and UNC4221. These groups have targeted US government officials, military leaders, and journalists through phishing campaigns on commercial messaging applications (CMAs) like Signal and WhatsApp. Recently, they have updated their tactics to request victims' Backup Recovery Keys, which could allow them to retain access to compromised accounts.
The threat actors are believed to be associated with Russian intelligence, specifically the FSB and military services. The government is seeking information about these actors and is focusing on their affiliations and funding sources.