Russia Attacked By ‘Full Scale Cyber War’

A wave of fake bomb threats across Russia has entered its second week in what a senior lawmaker called a "full-scale cyberwar" against the country that authorities are ill-equipped to fight. 

About 400,000 people have been evacuated from more than 1,000 shopping malls, airports, and government and other buildings around the country since the surge in hoaxes began around the 10th September, according to the official Tass news agency. 

RIA Novosti said more than 100,000 people were affected on Monday 18th alone. The calls are coming from outside Russia using the Internet, making them difficult to trace, officials said.
"It's a full-scale cyberwar using telephone terrorism," said Frants Klintsevich, deputy head of the Defense Committee in the upper house of parliament, said in a telephone interview. "We will respond."

Among the latest targets was a Stalin-era bomb shelter near Moscow's Garden Ring road, now a Cold War museum, along with several shopping malls and government offices, according to the state-run Tass news service. 

The headquarters of Internet company Yandex NV was targeted just hours after a visit by President Vladimir Putin, according to an unnamed security source cited by the official Tass news agency. The company later said a fire alarm had been triggered.
Altogether Thursday 21st September, more than 15,000 people in eight cities were evacuated because of hoaxes, RIA reported, citing an unnamed security official.
"No other country in the world has experienced something like this. It's an extraordinarily dangerous situation," said Nikolai Kovalyov, a member of the lower house of parliament and former head of the Federal Security Service (FSB), the main successor to the Soviet KGB. "It all started as a hacking attack via Internet-telephony and now ordinary crazies have joined the wave."

The FSB told other security agencies last week not to comment publicly on the hoaxes in order to reduce the risk of panic, the Vedomosti newspaper reported. There was no answer at the FSB press office in Moscow. But Vladimir Puchkov, minister of Emergency Situations, said Wednesday the continuing threats were "a major problem," RIA reported. He rejected speculation they were part of a drill organised by authorities.

So far, all of the hundreds of threats have turned out to be fake. Losses from the evacuations have reached at least 300 million rubles ($5.2 million) in the past week, according to the RBC newspaper.

No one has publicly claimed responsibility for the hoaxes. Officials have given conflicting accounts of who they suspect is behind them, ranging from Islamic State to security services in Ukraine, which has accused Russia of mounting cyber-attacks on its power grid and other systems. 

Ukrainian military spokesperson Andriy Lysenko denied his country played any role, saying the Kremlin was seeking to turn Russia's population against its neighbour.
"This has been an attack unprecedented by its size and unique for Russia," said Sergey Nikitin, an expert in Moscow-based cybersecurity firm Group-IB. 

Hackers may use a chain of servers located in different jurisdictions, that may have conflicts with each other and don't exchange information, to make a call, according to Nikitin. This, in addition to possible use of voice-modulation software and Google translate, make them impossible to trace, he said.

Hamilton News:

You Might Also Read:

Global Cyber Conflict Is Close:

Which Countries Are Ready For Cyberwar?:

How A Cyber Attack Transformed Estonia:
 

 

« What Is Edge Computing?
Deloitte Hit by Cyber Attack: Clients' Private Data Exposed »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Trustwave

Trustwave

Trustwave is a leader in managed detection and response (MDR), managed security services (MSS), consulting and professional services, database security, and email security.

Authenware

Authenware

AuthenWare delivers the highest level of identity security based on behavioral biometrics.

Hexatrust

Hexatrust

The HEXATRUST club was founded by a group of French SMEs that are complementary players with expertise in information security systems, cybersecurity, cloud confidence and digital trust.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Iowa Cyber Hub

Iowa Cyber Hub

Iowa Cyber Hub is a cybersecurity education partnership between Iowa State University and Des Moines Area Community College.

Cyble

Cyble

Cyble Vision enables faster detection of cyber threats and focuses on identifying and analysing the motivations, methods, capabilities and tools of adversaries.

ISARR

ISARR

The ISARR software platform - your bespoke Risk, Resilience & Security Management solution. Simple, cost effective and adaptable, now and into the future.

International Cybersecurity Forum (FIC)

International Cybersecurity Forum (FIC)

The International Cybersecurity Forum (FIC) has established itself as the benchmark event in Europe in terms of digital security and trust.

Towerwall

Towerwall

Towerwall offers a comprehensive suite of security services and solutions using best-of-breed tools and information security services.

RedHunt Labs

RedHunt Labs

RedHunt Labs is a premier Cybersecurity Solutions provider, offering Attack Surface Management solution 'NVADR' and Penetration Testing services.

HACKNER Security Intelligence

HACKNER Security Intelligence

HACKNER Security Intelligence is an independent security consultancy delivering comprehensive security assessments across IT security, physical security, and social engineering.

Silent Quadrant

Silent Quadrant

Silent Quadrant delivers incomparable cybersecurity consulting, digital transformation, and risk management within our purpose-driven clients - empowering them to be the most resilient entities.

Cura Technology

Cura Technology

Cura Technology offers a wide array of security solutions meticulously designed to address specific facets of your security requirements.

RunReveal

RunReveal

RunReveal's mission is to make sure no breach goes undetected. That means having a product that is accessible and effective for companies of all sizes.

NetDescribe

NetDescribe

NetDescribe, part of Xantaro Group, advises and supports companies in building secure and stable IT environments.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.