do you want me to post the email embedded javascript obfuscated code that was included in an email from the BBC to a child of mine?, I attribute it to Gloucestershire.
Or I could add the mail-bomb script that the NSA embedded in a fake email to me "from the ITU"?
The Russian/GRU attack that I noticed was much more subtle, such that nobody seemed particularly interested - it involved a special offer on software, a slow social engineered creep of app permissions, to a full MITM - whilst pretending to be a cloud AV, over six months....
this information war stuff is very multilateral, read wider