Russia Alleges Mobile Spyware Campaign Targeted Senior Officials' Phones
Russia's Federal Security Service (FSB) said it uncovered a large-scale espionage operation in which malware was implanted on the smartphones of senior Russian government officials. According to the agency, the spyware enabled theft of correspondence, call data, geolocation, contact lists, and other stored information, while also allowing interception of conversations and covert activation of device microphones and cameras for audio and video collection.
Russian authorities said they opened a criminal investigation into illegal access to computer information and malware distribution and are conducting forensic analysis to identify the perpetrators, map the supporting infrastructure, and determine the scope of the compromise. The FSB did not publish technical evidence, name the malware, disclose victim counts, or specify the infection vector, though reporting said infrastructure linked to Cloudflare and Fastly appeared in footage released by the agency without accusing either company of direct involvement; the allegations also echo Russia's earlier claims around the Operation Triangulation iPhone spyware campaign.

Get ahead of threats like this
Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
How this story unfolded
2 events from the most recent confirmed update back to the earliest known activity.
Russian authorities open criminal probe into alleged phone espionage
Russian authorities said they opened a criminal investigation into the alleged compromise of officials' smartphones. According to the reports, the probe is intended to identify the perpetrators, map the infrastructure involved, assess the scope of the compromise, and examine affected devices.
FSB claims foreign spyware infected Russian officials' phones
Russia's Federal Security Service said it uncovered a large-scale espionage campaign in which malware was implanted on mobile devices used by senior or high-ranking Russian officials. The agency said the spyware enabled theft of correspondence and stored data, interception of calls and communications, geolocation and contact-list access, and covert audio/video collection, but it did not provide technical evidence or identify the malware.
Related entities
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
Sources
7 references tracked. Mallory keeps watching after this page renders.
Russia FSB claims foreign intelligence used malware on officials’ phones | brief | SC Media
scworld.com
Open sourceRussia's FSB Says Foreign Spies Infected Officials' Phones With Malware
securityaffairs.com
Open sourceФСБ заявила, что иностранные спецслужбы внедряли шпионское ПО в смартфоны чиновников - Хакер
xakep.ru
Open sourceRussia Says Foreign Spyware Found on High-Ranking Officials' Mobile Phones
cybersecuritynews.com
Open sourceRussian spy agency says foreign spies turned officials' smartphones into surveillance devices
theregister.com
Open sourceПодробная информация :: Федеральная Служба Безопасности ( Официальное сообщение )
fsb.ru
Open sourceRussia claims foreign spy agencies hacked officials' phones | The Record from Recorded Future News
therecord.media
Open sourceSee the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.


