Same Sea, New Phish
Russian Government-Linked Social Engineering Targets App-Specific Passwords

Keir Giles, a prominent expert on Russia, was targeted with a new form of social-engineering attack that leverages App-Specific Passwords. Google links the operation to UNC6293, a Russian state-backed group.

Featured Publications

Unspoken Implications: A Preliminary Analysis of Bill C-2 and Canada’s Potential Data-Sharing Obligations Towards the United States and Other Countries

Our preliminary analysis of Bill C-2 situates the legislation within the context of existing research by the Citizen Lab about two potential data-sharing treaties that are most relevant to the new proposed powers being introduced in Bill C-2: the Second Additional Protocol to the Budapest Convention (2AP) and the CLOUD Act. Both of which carry significant constitutional and human rights risks.

Lifting the lid off the Internet.

The Citizen Lab is an interdisciplinary laboratory based at the Munk School of Global Affairs & Public Policy, University of Toronto, focusing on research and development at the intersection of information and communication technologies, human rights, and global security. Learn more.

Get the latest Citizen Lab news right in your inbox.

Subscribe below.

Privacy Policy

Features & News

Job Posting: Systems and Security Administrator

Join our team! We are hiring a Systems and Security Administrator to oversee the daily operations of networks and systems administration and oversee security and administration of all information technology in the Citizen Lab. Apply by September 10, 2025.

The Citizen Lab’s Submission on Transnational Repression in the UK

Transnational repression is a serious threat to human rights.  Over the past decade, the Citizen Lab has published numerous reports examining transnational repression (TNR) across the globe, focusing specifically on its digital forms.  In response to increasing accounts of foreign governments reaching across borders to harass and silence people in the United Kingdom, the UK’s… Read more »

Featured Video

Gender-based Digital Transnational Repression Explained