Russia Accused Of Cyber Attack On Norway

Russia has been accused of carrying out a "significant" cyber-attack on the Norwegian parliament in August. In this attack/hack, unauthorised individuals got access to the email accounts of several elected members of the Storting, Norway's single-chamber parliament.

The cyber criminals also hacked into accounts belonging to the parliament’s employees. An unspecified amount of data was stolen and this has members of Norway's main opposition party.

Norway's foreign minister, Ine Eriksen Soereide, told reporters that the attack was created by Russia and she said it is very a serious incident affecting the country's "most important democratic institution.....This is a serious event that hit our most important democratic institution.... Based on the information available to the government, it is our assessment that Russia stood behind this activity."” said Soereide.

Soereide did not give details of any action that Norway might take against its neighbor. A Norwegian foreign ministry spokeswoman declined to comment when asked whether Russia would be asked to recall its ambassador or any of its diplomats from Norway. 

Moscow has rejected Norway's claim, calling it a ‘serious and willful provocation.’ In addition, the Russian embassy referred to the fact that Russia does not blame the authorities of other countries in such cases, despite the fact that millions of cyber-attacks are annually committed on Russian state Internet resources from abroad, including from foreign missions in Norway.

These sort of events go back also to September 2018 when a Russian IT adviser named Mikhail Bochkaryov was arrested at Oslo Airport after exhibiting strange behavior at an IT conference held in Norway's parliament.  Bochkaryov, an employee of the Russian parliament's upper chamber, had been attending a seminar organised by the European Centre for Parliamentary Research and Documentation on the Storting's digitalisation process. 

Norway’s Police Security Service (PST) said the IT professional had been detained on suspicion of illegal intelligence activities and later released with charge.

  • In 2017, Norway accused APT 29 of carrying out spear-phishing attacks on Norway’s foreign ministry, army, and other institutions. Arne Christian Haugstoyl, an official with PST, said that the group, which has "links to the Russian authorities," had targeted nine different email accounts.  
  • In 2018, NATO member Norway arrested a Russian national suspected of gathering information on the parliament's internet network, but released him several weeks later due to lack of evidence.

The two countries, which share a common border in the Arctic, have had good relations, but these have become strained since Russia's annexation of Ukrainean territory in the  Crimean peninsula 

RFERL:         Infosecurity Magazine:         Security Week:        BBC:         112 UA

You Might Also Read: 

German Government Hit By Russian Hackers:

 

« Social Media Has Gone Global
Artificial Intelligence: Threats & Opportunities »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Virus Bulletin

Virus Bulletin

Virus Bulletin is an online security information portal and certification body, providing users with independent intelligence about the latest developments in the global threat landscape.

Information Security Group (ISG) - Royal Holloway

Information Security Group (ISG) - Royal Holloway

The Information Security Group, Royal Holloway, University of London, is an Academic Centres of Excellence in Cyber Security Research.

Metasploit

Metasploit

Metasploit penetration testing software helps find security issues, verify vulnerabilities and manage security assessments.

Information Security Forum (ISF)

Information Security Forum (ISF)

The ISF is a leading authority on information security and risk management.

Association of Information Security Professionals (AISP)

Association of Information Security Professionals (AISP)

The Association of Information Security Professionals (AISP) represents the interests of information security professionals in Singapore.

AVG Technologies

AVG Technologies

AVG is focused on providing home and business computer users with the most comprehensive and proactive protection against computer security threats.

Industrial Cyber Security

Industrial Cyber Security

Industrial Cyber Security provides specialist consulting services in enterprise and SCADA system security.

Applied Security (APSEC)

Applied Security (APSEC)

APSEC provides products and services in the areas of encryption, digital signature, authentication and data loss prevention.

NetKnights

NetKnights

NetKnights is an independent IT security company which offers services and products for strong authentication, identity management and encryption.

Liongard

Liongard

Liongard automates the management and protection of modern IT environments at scale for IT MSPs - Managed Service Providers and Enterprise IT Operations.

CyFIR

CyFIR

CyFIR is a network investigation and Incident Response tool for performing live computer investigations across any size enterprise.

Shield Capital

Shield Capital

Shield Capital helps founders build frontier solutions in cybersecurity, artificial intelligence, space & autonomy for commercial and government enterprises.

Riskonnect

Riskonnect

Riskonnect technology empowers organizations with the ability to anticipate, manage, and respond in real-time to strategic, operational, and digital risks across the extended enterprise.

AVANT Communications

AVANT Communications

AVANT is a premier distributor of next generation technologies with the resources and relationships needed to successfully navigate the ever-changing world of communications and IT infrastructure.

Next DLP

Next DLP

Next DLP (formerly Jazz Networks) is a leading provider of insider risk and data protection solutions.

SecurWeave

SecurWeave

SecurWeave's Configurable Hardware Enforced Safety and Security (CHESS) platform has been designed to meet the security and safety criticality needs of the evolving digital industry.