Cold River

Threat Actor

Russian hacking team Cold River first appeared on the radar after targeting Britain’s foreign office in 2016, has been involved in dozens of other high-profile hacking incidents in recent years. Reuters traced email accounts used in its hacking operations between 2015 and 2020 to an IT worker in the Russian city of Syktyvkar.

Incidents Associated with this Threat

Malware Used by this Threat Actor

No malware identified for this threat actor.