Researchers warn of ongoing spear-phishing attacks by Russian threat actor Midnight Blizzard targeting individuals in various sectors. The attacks involve sending signed RDP configuration files to thousands of targets, aiming to compromise systems for intelligence gathering. The actor impersonates Microsoft employees and references other cloud providers to increase credibility, so users are advised to be cautious of suspicious emails and avoid opening attachments from unknown senders.
Source: GBHackers