Η Threat Analysis Group Google was the one that spotted the malicious activity and sent a warning.
The findings were also reported to FBI, said Google.
Security threats come shortly before the US election, and are becoming more and more over time. Google sent 10.316 warnings about "government-backed attacks" in the July-September 2020 quarter.
These groups target the personal emails of employees of a campaign with phishing attacks and emails that contain tracking links.
Another Chinese campaign also relied on email links to install malware hosted on GitHub. The malware was an implant based on Python using the Dropbox file sharing service for command and control. It would allow the attacker to upload and download files as well as execute arbitrary commands.
Every malicious part of the attack was hosted on legitimate services, making it easier to avoid detection, according to Google.
Russia's Strontium group has attacked more than 200 organizations, including political campaigns, defense groups, parties and political advisers, Microsoft products.
Other cyber-espionage groups such as Zirconium and Phosphorus, which operate in China and Iran respectively, have attacked high-profile election-related users.