Threat participants with alleged connections to Russia have been noted exploiting a Google account functionality known as application-specific passwords (or app passwords) as part of an innovative social manipulation strategy aimed at acquiring access to victims’ email accounts.
Information regarding this meticulously focused effort was revealed by the Google Threat Intelligence Group (GTIG) and the Citizen Lab, indicating that the activity