Fallout In Russia : One Suspicious Death & Three Cyber Spies Arrested

Uploaded on 2017-02-10 in INTELLIGENCE-Hot Spots-Russia, GOVERNMENT-National, FREE TO VIEW, NEWS-Cybersecurity News

In the eerie world of international espionage, nothing of late has topped the official US accusation that Russian president Vladimir Putin plotted to put US president Donald Trump in power.

Now, the tale has become even more salacious with the reported arrest of three Russian cyber experts, one of whom was perp-walked out of a meeting with a bag over his head, and the suspicious death of a former KGB general.

Russia experts say the episode suggests a possible purge related to the US election hack. In a twist of Kremlinology, others say Putin may only be pretending to have arrested and killed cyber operatives. 

Or, others say, neither observation may be true. “Can we really trust Russian news?” asks Dave Aitel, a former analyst with the US National Security Agency, and now CEO of Immunity, a cyber intrusion protection firm.

The story of the arrests appears to have broken at the Russian newspaper Kommersant on Jan. 25. The paper reported (link in Russian) the arrests of Sergei Mikhailov, who heads the Center for Information Security, an arm of the Russian intelligence agency known by the acronym FSB; and Ruslan Stoyanov, a senior researcher with Kaspersky Lab, the computer security company.

Both men were last seen the first week of December. The independent newspaper Novaya Gazeta reported that (Russian), in a Stalin-style touch, a bag was suddenly thrown over Mikhailov’s head during a meeting of fellow intelligence officers, and he was led out. Mikhailov has not been seen since. The third arrest was of Dmitry Dokuchayev, a hacker known by the name “Forb.”

In all three cases, the charge is treason, according to Russian news accounts.

From here, the story gets hazy. One way or another, the arrests, according to the Russian media accounts, are linked to the country’s hacking of the US election. 

One suggestion is that those arrested are among the sources that led US intelligence agencies to conclude categorically that Russia hacked the election, that Putin ordered the hack, and that the objective was to help Trump.

Russian media suggest that one or more of the trio either leaked details of Russia’s role directly to American intelligence, or to Christopher Steele, the former British spy believed to have compiled the so-called Trump dossier. 

The dossier is a 35-page memo that suggested various links between Trump and Russia, involving information that allegedly made him vulnerable to extortion.

Which leads to the Dec. 26 death of a former KGB general named Oleg Erovinkin. An initial news account at the Russian website Life.ru said Erovinkin had been killed, shot twice in the head. That version quickly morphed into vaguer accounts of a death-under-investigation.

But the larger interesting fact related to Erovinkin’s death was that Steele’s memo cites a source close to Igor Sechin, the Putin intimate and chairman of Rosneft. And Erovinkin, a long-time senior aide to Sechin, must be that source, a number of the news accounts speculate. Thus, according to these news accounts, there is a link between the Steele memo and Erovinkin’s death.

A big question is why the Kremlin, given its controls over almost all the country’s media, wanted this news out. Among the guesses is that the Kremlin wants firmer confirmation for the US, and perhaps the world, that it in fact did hack the US election.

Aitel, the cyber expert, says the answer is simpler, that the news was “too big not to leak. It is not going to go unnoticed that Kaspersky’s lead researcher went missing.”

DefenseOne:            Cyber Strikeback: Putin’s Aide Hacked:


 

 

« Yahoo Spins A Cautionary Tale Dealing With Data Privacy
Who Owns The Data From The IoT? »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Echelon

Echelon

Echelon Company is a provider of information security services specializing in certification of security software and hardware products in Russia.

Professional Information Security Association (PISA)

Professional Information Security Association (PISA)

PISA is an independent and not-for-profit organization for information security professionals, with the primary objective of promoting information security awareness and best practice.

CLUSIL

CLUSIL

CLUSIL is an association for the information security industry in Luxembourg.

MKD-CIRT

MKD-CIRT

MKD-CIRT is the national Computer Incident Response Team for Macedonia.

Zecurion

Zecurion

Zecurion data loss prevention (DLP) solution is an easy-to-use solution for securing confidential data at rest and in motion.

Air Informatics

Air Informatics

Air Informatics LLC provides security, information management, analytics and informatics for IT and wirelessly enabled airplanes and operations.

Very Good Security (VGS)

Very Good Security (VGS)

VGS is the modern approach to data security. Our SaaS solution gives you all the benefits of interacting with sensitive and regulated data without the liability of securing it.

Slice

Slice

Slice offer subscription based Cyber Insurance for small businesses.

UnderDefense

UnderDefense

UnderDefense provides cyber resiliency consulting and technology-enabled services to anticipate, manage and defend against cyber threats.

Center for Information Technology Policy (CITP) - Princeton University

Center for Information Technology Policy (CITP) - Princeton University

The Center for Information Technology Policy at Princeton University is a nexus of expertise in technology, engineering, public policy, and the social sciences.

e5 Lab

e5 Lab

e5 Lab seeks to develop solutions to challenges faced by the shipping industry including digital transformation, autonomous technologies and big data in order to promote safe and efficient operations.

LBMC

LBMC

LBMC is a professional services solutions provider in accounting and finance, human resources, technology, risk and information security, and wealth advisory services.

SOOS

SOOS

SOOS is the easy-to-integrate software security solution for your whole team. Build, catch, and fix vulnerabilities with SOOS Software Composition Analysis.

Archon Secure

Archon Secure

Archon GoSilent Cube delivers a CSfC-certified, plug-and-play security solution for classified and unclassified communication when using the public Internet.

Bastazo

Bastazo

Bastazo provides tools for vulnerability and patch management. Focus your cybersecurity operations on vulnerabilities with the highest risk of exploitation.

Orchid Security

Orchid Security

Orchid Security provides unprecedented insight and action to your identity security with the help of advanced technologies like Large Language Models (LLM).