Australian Media Bombarded by 71,000 Spam Emails in Russia-Linked Disinformation Campaign

The report reveals Operation Overload is shifting focus to the upcoming US elections. The exact origins and backing of the campaign remain uncertain.
Australian Media Bombarded by 71,000 Spam Emails in Russia-Linked Disinformation Campaign
Participant hold their laptops in front of an illuminated wall at the annual Chaos Computer Club (CCC) computer hackers' congress, called 29C3, on Dec. 28, 2012 in Hamburg, Germany. Patrick Lux/Getty Images
Naziya Alvi Rahman
Updated:
0:00

A new report claims 15 Australian media outlets have been targeted in a coordinated disinformation campaign linked to Russia.

Finnish analytics firm CheckFirst released an update on its report, Operation Overload, analysing the pattern in which media houses were misled.

It states that local media organisations, including AAP, ABC, The Conversation, and The Daily Aus, were bombarded with at least 71,000 spam emails containing misleading information about global events such as the Ukraine war and the Paris Olympics.

It also warns that there is a clear indication of Operation Overload shifting its focus toward the upcoming U.S. elections.

“The heatmap of email activity from January to September 2024 provides a comprehensive view of the operation’s intensity over time,” reads the report.

“Approximately 11 percent of these email addresses are nominative, which suggests a focused effort to directly reach individuals within the targeted organisations. The remaining 89 percent are more generic addresses, such as [email protected], likely intended for broader distribution within the targeted organisations.”

It further explains that the nature of these emails, combined with the inclusion of generic addresses, reflects the operation’s dual strategy: first, to penetrate organisations at an individual level and then, to aim for widespread dissemination of disinformation.

With over 71,000 emails received by a carefully curated list of contacts, the operation has used sophisticated tactics, including dynamic QR codes, anonymous inauthentic accounts on X (formerly Twitter), Telegram channels, and a network of fake media websites, to spread disinformation.

Guillaume Kuster, CEO of CheckFirst, reveals that further investigation into the “grey zone” has provided additional evidence linking the disinformation campaign to Russia.

He notes that some email accounts were accessed through Russian IP addresses and that QR codes included in the emails were generated by an individual associated with a Russian marketing agency.

“While not definitive proof, these signs suggest that the campaign is part of a larger, coordinated effort,” Kuster said.

The report highlights that Operation Overload is a clear example of coordinated, inauthentic behaviour designed to manipulate public perception.

Kuster, however, said that the exact origins and backing of the campaign remain uncertain. Still, it seems designed to deceive fact-checkers, potentially leading them to expose and inadvertently spread false information.

The report also claims that the surge in activity during the 2024 Paris Olympics highlights the operation’s strategic timing, aiming to exploit global events for maximum impact.

“While sending emails is not illegal, the methods used in this campaign violate the terms of service of platforms such as Gmail, which prohibit activities such as spamming, phishing, and creating misleading content,” it states.

The report recommends more vigorous enforcement of digital platform policies to prevent such malicious usage.

“This evolution in the operation’s strategy highlights the ongoing threat posed by such disinformation campaigns, making vigilance and proactive measures more critical than ever,” it reads.

AAP contributed to this article.
Naziya Alvi Rahman
Naziya Alvi Rahman
Author
Naziya Alvi Rahman is a Canberra-based journalist who covers political issues in Australia. She can be reached at [email protected].
Related Topics