The British Foreign Office was spearphished last year by the Callisto Group, according to the BBC and the Times of London, but it's not believed the espionage succeeded in discovering anything particularly sensitive.
Reports of the incident are based on a study of the Callisto Group released yesterday by F-Secure. As usual, F-Secure is coy about attribution, but they do tease with informed speculation that Callisto is connected to a nation-state. It's used infrastructure connected to actors in China, Ukraine, and Russia, but also to criminal organizations dealing drugs and other contraband. The payload Callisto's phishing emails delivered was, according to F-Secure, the Scout tool from the HackingTeam's RCS Galileo. F-Secure also notes similarities in technique to APT28, a.k.a. Fancy Bear, a.k.a. the GRU, so signs both criminal and technical tend to point toward Russia.
US Director of Central Intelligence Pompeo had some harsh words for WikiLeaks yesterday, calling Mr. Assange's organization a "non-state hostile intelligence service" and Mr. Assange himself "a narcissist who has created nothing of value." The operation, Pompeo argued before the Center for Strategic and International Studies, provides an implausibly deniable figleaf for the Russian services, at best a fellow-travelling useful idiot if not an active agent-of-influence.
The ShadowBrokers are angry too, fed up with "the peoples" who aren't taking their leaks seriously enough.
Much of this conflict lies in the realm of influence operations as opposed to hacking proper, and some within NATO would like to "weaponize" memes, trolling both ISIS and the Russian government.