According to the Internet media Exploit, the editorial office was among the first to apply for registration in Rossgram. Yesterday, March 27, journalists received a letter from the mail-rossgram.ru domain, which was registered on March 23, 2022. This looks suspicious. The email contained a QR code leading to the download of a malicious application from Google Drive. And in the text of the letter, the recipient was addressed by a name that had not previously been indicated anywhere, except in the registration form on the Rossgram website.
In addition, when registering, it was necessary to indicate the mail, phone number, name and occupation. It is noted that the Rossgram administration has already removed the e-mail field from the registration form.