Russia Stands Accused Of Global Hacking Campaign

Uploaded on 2018-10-05 in INTELLIGENCE--International, GOVERNMENT-National, GOVERNMENT-Defence, FREE TO VIEW, INTELLIGENCE-Hot Spots-Russia, NEWS-Cybersecurity News, TECHNOLOGY--Hackers

Western countries issued coordinated denunciations of Russia, on Thursday 4th October, for running what they described as computer hacking programmes to undermine democracies, targeting institutions from sports anti-doping bodies to the chemical weapons watchdog.

The US Justice Department on Thursday also announced the indictment of seven Russian military spies on cyber hacking charges linked to the leaking of Olympic athletes’ drug-test data in an alleged attempt to undermine international efforts to expose Russian doping.

Four of the officers with Russia’ GRU military intelligence agency also were charged with targeting organisations probing Russia’s alleged use of chemical weapons, including the poisoning of a former Russian spy in Britain. Three were indicted in July for allegedly conspiring to interfere in the 2016 presidential election.

In some of the strongest language aimed at Moscow since the Cold War, Britain said Russia had become a “pariah state”. The United States said Moscow must be made to pay the price for its actions. And their allies around the world issued stark assessments of what they described as a campaign of hacking by Russia’s GRU military intelligence agency. 

Russia denied what its Foreign Ministry spokeswoman called a “diabolical perfume cocktail” of allegations dreamt up by someone with a “rich imagination”. But the accusations deepen Moscow’s isolation at a time when its diplomatic ties with the West have been downgraded over the poisoning of an ex-spy and while it is under U.S. and EU sanctions over actions in Ukraine.

Britain and the Netherlands accused Russia of sending agents with computer gear and WiFi antennas to the Hague, to try to hack into the Organisation for the Prohibition of Chemical Weapons (OPCW). 

The watchdog at the time was looking into the attack on ex-spy Sergei Skripal in Britain and Western reports of chemical weapons being used by Russia’s ally, Syria, against internal opponents. 

The United States indicted seven suspected Russian agents for conspiring to hack computers and steal data to delegitimise international anti-doping organisations and punish officials who had revealed a Russian state-sponsored athlete doping programme. 

The Justice department said one of the Russian intelligence officers also performed reconnaissance of personnel at Westinghouse Electric Co, a nuclear power company that provides atomic fuel and plant designs to customers. 
The accusations were unveiled at briefings around the globe that were held as NATO defence ministers gathered in Brussels to present a united front to their Cold War-era foe. 

“This is not the actions of a great power, these are the actions of a pariah state,” British Defence Secretary Gavin Williamson told reporters. US Defense Secretary Jim Mattis, at a news conference in the Belgian capital, said Russia must pay a price, and a number of response options were available. 

EU officials said in a statement Russia’s “aggressive act demonstrated contempt for the solemn purpose” of the OPCW. Australia, New Zealand and Canada were among other countries which issued strongly worded statements backing the findings of their allies.

Dutch authorities said they had disrupted the attempt to hack into the Hague-based OPCW in April, as it investigated the Skripal nerve agent poisoning and alleged use of chemical weapons in Syria by Russian-backed President Bashar al-Assad. 
Four Russians arrived in the Netherlands on April 10 and were caught three days later with spying equipment at a hotel located next to the OPCW headquarters, the Dutch military intelligence agency said. 

The men had planned to travel on to a laboratory in Spiez, Switzerland used by the OPCW to analyse samples, Dutch Major-General Onno Eichelsheim said. They were expelled to Russia. The Netherlands released copies of passports of the four men, which identified them as Alexey Minin, Oleg Sotnikov, Evgenii Serebriakov and Aleksei Morenets, all in their 30s or 40s. Reuters was not immediately able to contact them. 

Earlier on Thursday, Britain released an assessment based on work by its National Cyber Security Centre (NCSC), which cast Russia’s GRU military intelligence agency as a cyber aggressor which used a network of hackers to sow worldwide discord. 

The GRU, Britain said, was almost certainly behind the BadRabbit and World Anti-Doping Agency hacking attacks of 2017, the hack of the US Democratic National Committee (DNC) in 2016 and the theft of emails from a UK-based TV station in 2015. 

“The GRU’s actions are reckless and indiscriminate: they try to undermine and interfere in elections in other countries,” said British Foreign Secretary Jeremy Hunt. “Our message is clear - together with our allies, we will expose and respond to the GRU’s attempts to undermine international stability.” 

The GRU, now officially known in Russia by a shorter acronym GU, is also the agency Britain has blamed for the attack on former GRU spy Skripal with a nerve agent sprayed on his door. 

Skripal, his daughter and a police officer fell seriously ill and a British woman later died after her partner found the poison in a discarded perfume bottle. Russia says the two men Britain blames for the attack were tourists who twice visited Skripal’s home town for sightseeing during a weekend trip to England, a story Britain has dismissed as far-fetched. 

After the Skripal poisoning, dozens of Western countries launched the biggest expulsion of Russian spies working under diplomatic cover since the height of the Cold War. Moscow replied with tit-for-tat expulsions of Westerners. 

In a separate case on Thursday, a Norwegian court extended for a second two-week period the detention of a Russian citizen suspected of spying on Norway’s parliament. Norway arrested Mikhail Bochkaryov on Sept. 21 as he was about to fly out of the country. Moscow says he is a Russian parliamentary staff member and has demanded Oslo lift the “absurd charges”. 
Britain said the GRU was associated with a host of hackers including APT 28, Fancy Bear, Sofacy, Pawnstorm, Sednit, CyberCaliphate, Cyber Berkut and Voodoo Bear. 

The United States has sanctioned GRU officers including its chief, Igor Korobov, in 2016 and 2018 for attempted interference in the 2016 U.S. election and cyber-attacks.

Reuters:       Washington Post

You Might Also Read

Britian Accuses Russian GRU Spy Agency Of International Cyber Attacks:

Britain Plots Cyber Revenge On Russia For Novichok Poisonings:

Dutch Intelligence Agency Pinpoints Cyberattacks:

 

« Uber Pay $148m Penalty For Breach Cover-Up
US Offers Its Cyber Secrets To NATO »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

FT Cyber Resilience Summit: Europe

FT Cyber Resilience Summit: Europe

27 November 2024 | In-Person & Digital | 22 Bishopsgate, London. Business leaders, Innovators & Experts address evolving cybersecurity risks.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

IONU Security

IONU Security

IONU offer a security platform focused specifically on providing Data-centric Security.

European Network for Cyber Security (ENCS)

European Network for Cyber Security (ENCS)

ENCS’s core focus is around educating and solving cyber security challenges in the development and operation of energy grids across Europe.

Deep Instinct

Deep Instinct

Deep Instinct provides comprehensive defense that is designed to protect against the most evasive unknown malware in real-time, across an organization’s endpoints, servers, and mobile devices.

Dispersive Networks

Dispersive Networks

Dispersive Virtual Network is a carrier-grade software-defined programmable network that is inspired by battlefield-proven wireless radio techniques.

KLC Consulting

KLC Consulting

KLC Consulting offers information assurance / Security, IT Audit, and Information Technology products and services to government and Fortune 1000 companies.

Zettaset

Zettaset

Zettaset’s XCrypt Data Encryption Platform delivers proven protection for Object, Relational/SQL, NoSQL, and Hadoop data stores…in the cloud and on-premises.

Medigate

Medigate

Medigate is a dedicated medical device security platform protecting all of the connected medical devices on health care provider networks.

BIND 4.0

BIND 4.0

Bind 4.0 is an acceleration program geared toward tech startups with solutions applied to Advanced Manufacturing, Smart Energy, Health Tech or Food Tech fields.

Fortiphyd Logic

Fortiphyd Logic

Fortiphyd Logic equips operators of the power grid, oil & gas, and other critical infrastructure with the tools and training they need to defend their industrial networks from advanced cyberattacks.

Patriot Cyber Defense

Patriot Cyber Defense

Patriot Cyber Defense is a Cyber Security and Management Consulting professional services firm.

Conseal Security

Conseal Security

Mobile app security testing done well. Conseal Security are specialists in mobile app penetration testing. Our expert-led security analysis quickly finds security vulnerabilities in your apps.

KYND

KYND

KYND has created pioneering cyber risk technology that makes assessing, understanding, and managing business cyber risks easier and quicker than ever before.

Cypfer

Cypfer

CYPFER is a global market leader in ransomware post-breach remediation and cyber-attack first response.

Harrison Clarke

Harrison Clarke

Harrison Clarke is a leading staffing and recruiting firm in the Cloud, Cybersecurity, Data & AI space.

Early Game Ventures (EGV)

Early Game Ventures (EGV)

Early Game Ventures invests in startups that jumpstart new industries in the emerging markets of Europe.

CorePLUS Technologies

CorePLUS Technologies

CorePlus solutions are designed to empower organizations with the tools they need to ensure the utmost protection for their assets, people, and information.