Russia Attacked By ‘Full Scale Cyber War’

Uploaded on 2017-09-29 in NEWS-Cybersecurity News, INTELLIGENCE-Hot Spots-Russia, GOVERNMENT-National, FREE TO VIEW, TECHNOLOGY--Hackers

A wave of fake bomb threats across Russia has entered its second week in what a senior lawmaker called a "full-scale cyberwar" against the country that authorities are ill-equipped to fight. 

About 400,000 people have been evacuated from more than 1,000 shopping malls, airports, and government and other buildings around the country since the surge in hoaxes began around the 10th September, according to the official Tass news agency. 

RIA Novosti said more than 100,000 people were affected on Monday 18th alone. The calls are coming from outside Russia using the Internet, making them difficult to trace, officials said.
"It's a full-scale cyberwar using telephone terrorism," said Frants Klintsevich, deputy head of the Defense Committee in the upper house of parliament, said in a telephone interview. "We will respond."

Among the latest targets was a Stalin-era bomb shelter near Moscow's Garden Ring road, now a Cold War museum, along with several shopping malls and government offices, according to the state-run Tass news service. 

The headquarters of Internet company Yandex NV was targeted just hours after a visit by President Vladimir Putin, according to an unnamed security source cited by the official Tass news agency. The company later said a fire alarm had been triggered.
Altogether Thursday 21st September, more than 15,000 people in eight cities were evacuated because of hoaxes, RIA reported, citing an unnamed security official.
"No other country in the world has experienced something like this. It's an extraordinarily dangerous situation," said Nikolai Kovalyov, a member of the lower house of parliament and former head of the Federal Security Service (FSB), the main successor to the Soviet KGB. "It all started as a hacking attack via Internet-telephony and now ordinary crazies have joined the wave."

The FSB told other security agencies last week not to comment publicly on the hoaxes in order to reduce the risk of panic, the Vedomosti newspaper reported. There was no answer at the FSB press office in Moscow. But Vladimir Puchkov, minister of Emergency Situations, said Wednesday the continuing threats were "a major problem," RIA reported. He rejected speculation they were part of a drill organised by authorities.

So far, all of the hundreds of threats have turned out to be fake. Losses from the evacuations have reached at least 300 million rubles ($5.2 million) in the past week, according to the RBC newspaper.

No one has publicly claimed responsibility for the hoaxes. Officials have given conflicting accounts of who they suspect is behind them, ranging from Islamic State to security services in Ukraine, which has accused Russia of mounting cyber-attacks on its power grid and other systems. 

Ukrainian military spokesperson Andriy Lysenko denied his country played any role, saying the Kremlin was seeking to turn Russia's population against its neighbour.
"This has been an attack unprecedented by its size and unique for Russia," said Sergey Nikitin, an expert in Moscow-based cybersecurity firm Group-IB. 

Hackers may use a chain of servers located in different jurisdictions, that may have conflicts with each other and don't exchange information, to make a call, according to Nikitin. This, in addition to possible use of voice-modulation software and Google translate, make them impossible to trace, he said.

Hamilton News:

You Might Also Read:

Global Cyber Conflict Is Close:

Which Countries Are Ready For Cyberwar?:

How A Cyber Attack Transformed Estonia:
 

 

« What Is Edge Computing?
Deloitte Hit by Cyber Attack: Clients' Private Data Exposed »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

CSO

CSO

CSO serves enterprise security decision-makers and users with the critical information they need to stay ahead of evolving threats and defend against criminal cyberattacks.

Charlton Networks

Charlton Networks

Charlton Networks provide a complete range of IT infrastructure, network and security solutions aimed at SME companies.

SAMATE

SAMATE

The Software Assurance Metrics And Tool Evaluation project is an inter-agency project between the US Department of Homeland Security and NIST.

EY Advisory

EY Advisory

EY is a multinational professional services firm headquartered in the UK. EY Advisory service areas include Cybersecurity.

Arab Information & Communication Technologies Organization (AICTO)

Arab Information & Communication Technologies Organization (AICTO)

The Arab ICT Organization (AICTO) is an Arab governmental organization working under the aegis of the league of Arab States.

Metro Systems

Metro Systems

Metro Systems offer fully integrated IT solutions & services covering Digital Transformation, Digital Infrastructure, Cyber Security and Training.

th4ts3cur1ty.company

th4ts3cur1ty.company

th4ts3cur1ty.company specialize in delivering intelligence lead adversary emulation purple teaming & the bespoke building of Security Operation Centers.

BLUECYFORCE

BLUECYFORCE

BLUECYFORCE is the leading professional training and cyber defense training organization in France.

VIRTIS

VIRTIS

VIRTIS' mission is to provide today's leading organizations peace of mind that their entire digital network perimeter is safe from hackers and data breach.

SharkStriker

SharkStriker

SharkStriker is a US based managed security services provider with SOCs and offices across the globe.

SLVA Cybersecurity

SLVA Cybersecurity

SLVA Cybersecurity excel at delivering security-as-a-service, fit-for-purpose, within the constraints of realistic budgets and business expectations.

Quantum eMotion (QeM)

Quantum eMotion (QeM)

Quantum eMotion is a Montreal-based advanced developer leading the way towards a new generation of quantum-safe encryption for the quantum computing age.

Advanced IT

Advanced IT

Reliable managed IT Security & support services that will help you take your business operations to the next level without breaking the bank!

ViCyber

ViCyber

ViCyber is an Australian based company whose mission is to simplify and strengthen cybersecurity for all businesses, irrespective of size.

Cyber Dagger

Cyber Dagger

Cyber Dagger is a cybersecurity company driven by a mission to protect digital infrastructures and close the cybersecurity skills gap.

MODUS X

MODUS X

MODUS X is a Ukrainian IT product and service company created from the IT department of the DTEK Group of Companies.