US Accuses Russia Of Attacking Energy Infrastructure

Uploaded on 2018-03-19 in GOVERNMENT-Defence, FREE TO VIEW, BUSINESS-Production-Utilities, BUSINESS-Production-Energy, GOVERNMENT-National, INTELLIGENCE-Hot Spots-Russia, INTELLIGENCE--USA, NEWS-Cybersecurity News, TECHNOLOGY--Hackers

The US has accused Russia of a wide-ranging cyber-assault on its energy grid and other key parts of its infrastructure, as it stepped up sanctions on Russian intelligence for its interference in the 2016 elections.

US officials said that malware had been found in the operating systems of several organisations and companies in the US energy, nuclear, water and “critical manufacturing” sector, and the malware as well as other form of cyber-attacks had been traced back to Moscow.

“Russia’s behaviour continues to trouble us and we are continuing to push back in meaningful ways,” a senior national security official said.

The FBI and the Department of Homeland Security (DHS) issued an alert, urging other firms in the industry to review their cybersecurity. The alert said the concerted cyber-attack on US infrastructure began in March 2016.

“It is the judgment of the DHS than Russian government cyber-hackers were behind the hacking of organisations in the energy sector,” a senior official said, adding that it was clear that the cyber-attack was coordinated and “deliberately targeted”.

Officials added that the motive of the attack was initially surveillance, to gather information on computer management systems in the US energy grid.

The cybersecurity alert said: “DHS and FBI characterise this activity as a multi-stage intrusion campaign by Russian government cyber actors who targeted small commercial facilities’ networks where they staged malware, conducted spear phishing and gained remote access into energy sector networks.”

“After obtaining access, the Russian government cyber actors conducted network reconnaissance, moved laterally, and collected information pertaining to industrial control systems,” it added.

The US treasury announced new sanctions against Russian individuals and entities, including the FSB and GRU intelligence agencies, as well as the Internet Research Agency in St Petersburg, for interference in the 2016 elections.

As a result of Russia’s election interference, officials said that thousands of Russian-planted stories reached “millions of people online” during the US presidential campaign.

The new sanctions represent the broadest set of US punitive measures against Russia since the start of the Trump administration, and many of their targets are the same as those identified by an indictment by Robert Mueller, the special counsel investigating Russian interference in the 2016 election and possible collusion with the Trump campaign.
Mueller’s investigation has been denounced as a politically motivated witch-hunt by the president and his supporters, and the new measures represent the latest example of dissonance in attitudes towards Russia between Trump and other parts of the administration.

Adam Schiff, the top Democrat on the House intelligence committee, said the sanctions did not go nearly far enough in view of the scale of the Russian attack on the 2016 election.

“The sanctions today are a grievous disappointment, and fall far short of what is needed to respond to that attack on our democracy, let alone deter Russia’s escalating aggression, which now includes a chemical weapons attack on the soil of our closest ally,” Schiff said in a statement.

He pointed out that many of the sanctions targeted had already been designated by the Obama administration, and claimed that the new designated targets did not reflect “new work within the administration” but were selected on the basis of the Mueller’s indictment.

“It appears that Mr Mueller is doing more to place consequences on Russia’s behavior than the rest of the administration,” Schiff said.

The sanctions were also imposed for the role of Russian intelligence in distributing the NotPetya malware and ransomware which US officials attributed to Moscow in February. 

Officials said it was initially targeted at Ukraine but was allowed to “propagate recklessly without bounds” and caused an estimated $10bn in damage around the world, making it the most damaging cyber-attack in history.
The treasury announced it had sanctioned five entities and 19 individuals for cyber-attacks, including during the election. 

“The administration is confronting and countering malign Russian cyber-activity, including their attempted interference in US elections, destructive cyber-attacks, and intrusions targeting critical infrastructure,” Steven Mnuchin, the treasury secretary, said in a statement.

“These targeted sanctions are a part of a broader effort to address the nefarious attacks emanating from Russia. Treasury intends to impose additional … sanctions, informed by our intelligence community, to hold Russian government officials and oligarchs accountable for their destabilising activities by severing their access to the US financial system.”

Among those directly targeted are six senior officers of the Russian military intelligence service, the GRU, including its chief, Igor Korobov, and three of his deputies.

Guardian

You Might Also Read:


 

 

« Dark Web Fraud Undetectable By Police
Ensure Your Cloud Storage Is Compliant With GDPR »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Celestix Networks

Celestix Networks

Celestix is a global provider of secure network solutions that enable the simple deployment of secure remote access connectivity.

ISGroup (Information Security Group)

ISGroup (Information Security Group)

ISGroup services include network penetration testing, Web application penetration testing, ethical hacking, vulnerability assessments, code review and associated training.

Cyber Craft

Cyber Craft

CyberCraft is an innovative and dynamic software development, outsourcing and consulting company. Services offered include penetration testing.

United Biometrics

United Biometrics

United Biometrics is an anonymous and real-time authentication platform designed to stop the fraud for mobile payments, e-Commerce and applications.

PBOSecure

PBOSecure

PBOSecure is a dynamic and progressive IT consultancy company specializing in IT and Industrial Control System (ICS) security.

Athreon

Athreon

Athreon utilizes a fusion of AI technology, human interpretation, and the latest in cybersecurity to deliver sound business solutions that help our clients make better data-driven decisions.

Valarian

Valarian

Valarian (formerly Worldr) is on a mission to build cutting-edge solutions that empower borderless collaboration in the new era of digital sovereignty.

Terra Quantum

Terra Quantum

Terra Quantum is a deep tech pioneer, developing revolutionary quantum applications to shape the technology of the future.

CyberQP

CyberQP

CyberQP (formerly Quickpass Cybersecurity) provide Privileged Access Management built for MSPs. Our system is designed to reduce ransomware and social engineering attack risks.

Romanian Tech Startup Association (ROTSA)

Romanian Tech Startup Association (ROTSA)

Romanian Tech Startups Association is an umbrella organization that aims to promote, support and represent the interests of tech startups in Romania.

TuxCare

TuxCare

TuxCare make Linux more secure. We take care of Linux so that organizations can use Linux to support environments that require high levels of Cybersecurity, stability, and availability.

NPCERT

NPCERT

NPCERT is a team of Information Security experts formed to address the urgent need for the protection of national information and growing cybersecurity threat in Nepal.

FTx Identity

FTx Identity

FTx Identity is the world's most advanced age verification technology (AVT) and identity management system.

DART Consulting & Training

DART Consulting & Training

DART is a leading cyber training and consultancy company. We enhance our clients’ cyber capabilities by growing and strengthening their frontline defense – the cyber teams.

Cyphershield

Cyphershield

Cypershield is a Security and Smart Contract audit company providing professional smart contract auditing services for varied Crypto projects.

Aliro Security

Aliro Security

AliroNet is the world’s first entanglement Advanced Secure Network solution.