Brookhaven (BNL) National Laboratory was targeted by a Russian hacking team known as Cold River.
The hackers created fake login pages for each institution and emailed nuclear scientists in a bid to make them reveal their passwords.
Source: https://www.databreaches.net/russian-hackers-targeted-u-s-nuclear-scientists/
TPRM report: https://scoringcyber.rankiteo.com/company/brookhavenlab
"id": "bro19209123",
"linkid": "brookhavenlab",
"type": "Cyber Attack",
"date": "01/2023",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'Nuclear Research',
'location': 'United States',
'name': 'Brookhaven National Laboratory',
'type': 'Research Institution'}],
'attack_vector': 'Email phishing',
'data_breach': {'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Credentials'},
'description': 'Brookhaven (BNL) National Laboratory was targeted by a '
'Russian hacking team known as Cold River. The hackers created '
'fake login pages for each institution and emailed nuclear '
'scientists in a bid to make them reveal their passwords.',
'impact': {'data_compromised': 'Passwords'},
'initial_access_broker': {'entry_point': 'Email phishing',
'high_value_targets': 'Nuclear scientists'},
'motivation': 'Espionage',
'post_incident_analysis': {'root_causes': 'Human factor (credentials theft)'},
'threat_actor': 'Cold River',
'title': 'Phishing Attack on Brookhaven National Laboratory',
'type': 'Phishing',
'vulnerability_exploited': 'Human factor (credentials theft)'}