Cybercrime Links To Russian State Hackers

In 2015, there were over one million cyber-attacks on individuals and companies every day, and that is why even the strongest US response to the theft of the Democratic National Committee emails will do little to deter future state-sponsored attacks, cybersecurity experts say.

The sheer volume and increasing sophistication of network attacks provide plausible deniability to state-sponsored groups, like the APT 28 and APT 29 thought to be behind the DNC hack, says Christopher Porter, of cybersecurity company FireEye.

“One of the key factors that makes these Russian operations doable is that sophisticated criminal groups have APT-like capabilities and go after similar targets,” said Porter, whose company first documented APT 29’s ties to the Kremlin in 2014.“The best criminals use some of the same tools that lower-end states might use.”

Recognizing the valuable cover this provides, the “Russian government has been intentionally blurring the lines between cyber activists, criminals and state-paid hackers,” said Jarno Limnell, vice president for cybersecurity at Insta Group Oy.

This makes it hard to conclusively attribute an attack to a particular government, and all but impossible to respond firmly. So Western countries have thus far remained “fairly quiet” in the face of various Russian provocations, and that has only emboldened Moscow, Limnell said.

“The increase in state-sponsored cyber-attacks of Russia is the result of a perception that there is not a significant ‘price to pay’ for such activities,” he said. “Russia will keep pushing more aggressive and sophisticated cyber operations as long as the West doesn’t push back.”

The restrained US response to the DNC theft fits that pattern. When asked about the motives behind the attack, President Barack Obama deferred to the ongoing FBI investigation, and simultaneously acknowledged the reality of Russia’s aggressive online behavior.

“What we do know is that the Russians hack our systems, not just government systems but private systems,” Obama told NBC in a recent interview. “What the motives were in terms of the leaks, all that, I can’t say directly. What I do know is that Donald Trump has repeatedly expressed admiration for Vladi­mir Putin.”

Russia’s information warfare, efforts to create a positive image of itself while “breaking the internal coherence” of its adversaries with tactics ranging from shutting down Ukraine’s power grid to deploying online troll armies to shape public opinion, is the central thread knitting together the country’s theory of Next-Generation Warfare, according to a review of the strategy published last year by the Institut Francais des Relations Internationales.

“The informational campaign is an uninterrupted (bezpriryvnost) strategic effort,” wrote Dima Adamsky, the study’s author and a professor of government, diplomacy and strategy at the Interdisciplinary Center Herzliya in Israel. “It is waged during ‘peacetime’ and wartime, simultaneously in domestic, the adversary’s and international media domains and in all spheres of new media.”

The US government’s response to the DNC leak is unlikely to curtail the Russians’ use of offensive cyber campaigns, said Tobias Feakin of the Australian Strategic Policy Institute. Cyber-attacks and other informational manipulations of the socio-political landscapes are too well integrated into the Russian doctrine.

“The chances are that a strong public response would lead to Russian activity dropping for a short time, but more often than not this would pick up again once they felt the storm had passed, and they had developed new means of achieving the same goals,” said Feakin, the director of ASPI’s International Cyber Policy Center.

Longer-term solutions require a more comprehensive and serious approach, said Porter, who heads FireEye’s strategic intelligence and forecasting arm. Governments must tamp down sophisticated cyber-crime and deny state-sponsored attackers their camouflage. “A lack of attention to cyber-crime has enabled this to be something that’s doable,” he said. “Large-scale cyber-crime needs to be recognized as a national security issue.”

DefenseOne: http://bit.ly/2bbKb7l

 

« Anatomy Of Cyber Jihad
Benefits of Penetration Testing »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

AVR International

AVR International

AVR educate, advise, analyse and provide professional, technical consultancy and support to ensure your business is safe, compliant and protected.

SecurePay

SecurePay

SecurePay is Australia's premier payment gateway, with a range of secure online payment solutions for online retailers, SMEs and enterprise businesses.

Cyacomb

Cyacomb

Cyacomb (formerly Cyan Forensics) provides digital forensics software to help police forces find evidence on computers many times faster than before.

Future of Cyber Security Europe

Future of Cyber Security Europe

Future of Cyber Security Europe is a European wide event examining the latest cyber security strategies and technologies.

Online Business Systems

Online Business Systems

Online Business Systems is an information technology and business consultancy. We design improved business processes enabled with robust and secure information systems.

Computest

Computest

Computest security testing services include Mobile app security, Vulnerability assessments, Attack & penetration testing, Security awareness training, Network security assessments.

CYQUEO

CYQUEO

CYQUEO is your professional partner and system integrator. We secure your organization against advanced cyber threats.

Cyber Police of Ukraine

Cyber Police of Ukraine

Cyber Police of Ukraine is a law enforcement agency within the the Ministry of Internal Affairs of Ukraine dedicated to combating cyber crime.

ProWriters

ProWriters

As a leading cyber insurance company, ProWriters offers flexible Cyber Liability Insurance coverage designed to cover privacy, data, and network exposures.

Silicon Cloud International

Silicon Cloud International

Silicon Cloud is a high performance and secure cloud computing platform for engineering and scientific applications.

Audea

Audea

Audea is a consultancy firm specialising in cybersecurity, risk and compliance. We provide professional services addressing all areas of Cybersecurity and GRC.

LogicGate

LogicGate

The LogicGate Risk Cloud™ is an agile GRC cloud solution that combines powerful functionality with intuitive design to enhance enterprise GRC programs.

Timus Networks

Timus Networks

Timus Networks enables today's work from anywhere organizations to secure their networks very easily and cost effectively.

Labaton Sucharow

Labaton Sucharow

Standing on the horizon of law and technology, our Cybersecurity and Data Privacy Practice helps to protect consumers who have been harmed by businesses’ failures to safeguard their customers' data.

Cyberagentur (Cyber Agency)

Cyberagentur (Cyber Agency)

Cyberagentur is the Federal Agency in Germany for innovation in cybersecurity. Our mission is to advance research and groundbreaking innovations in the field of cybersecurity and related technologies.

Algoritha

Algoritha

Algoritha is a pioneering entity in the realm of security and forensic services.