TA499, also known by the aliases Vovan and Lexus, is a Russia-aligned threat actor that emerged with email campaigns in early 2021, intensifying its efforts after Russia's invasion of Ukraine in February 2022. The group's primary motivation is a pro-Russia propaganda effort, specifically designed to generate negative political content about individuals who criticize Russian President Vladimir Putin or oppose Russia's actions in Ukraine. What distinguishes TA499 is its method of operation, which involves aggressively using email campaigns to solicit video call requests from high-profile individuals, then impersonating officials, potentially with the use of deepfake technology, to create and disseminate politically damaging content.