Saturday, July 30, 2016

FSB-kibershpion discovered the virus in 20 networks of government agencies and enterprises of the defense industry – BBC

On Saturday the Russian Federal Security Service reported that the military, defense and other state-owned enterprises were able to get cyberhawks. According to the service, on computers for more than 20 Russian enterprises found malicious software that is used for cyber-espionage.

«was contaminated information resources of public authorities and management, scientific and military institutions, enterprises of the military-industrial complex and other objects of critical infrastructure of the country “, – said the agency

also, the FSB believes that since the attack suffered several tens of state-owned enterprises, an attack was carefully planned. and carried out in a professional manner. Who exactly was the victim of hackers, not specified in the FSB

. <-! Place 8246861, / tech / 2016/05/17/8246861 / sibrus.shtml, nm2015 / v2 / article / incut, incut1_link ->

Office experts analyzed the style of writing software (PO), the names of malicious files, as well as a way to “infected” computers and came to the conclusion that the same software used “in the high-profile operations to cyber espionage»

.

Fraudsters are made according to each “victim” individually and then attacked computer phishing method -. sent an e-mail message with an attachment that contains a malicious program

«after the introduction of the system malware loads the necessary modules allowing for the “victim”, and then is able to intercept network traffic, listening to him, the removal of the screen screenshots, including an independent web-cameras and microphones, PCs, mobile devices, recording audio and video files, to press keys on the keyboard data etc. “, – noted in the FSB

According to a leading analyst of ESET virus Artem Baranov listed FSB functions typical for backdoors -. malicious software that opens remote access to a victim’s computer

.

«We can assume that this attack was preceded by collection of information on potential victims. Then, the victim received phishing messages exploit (an infected file, that gets into the system and looking for vulnerabilities and then strikes -. “Times”), or malware as an attachment “- said the expert

<.! - 8008301 place, / tech / 2016/01/03/8008301 / hacked-instagram.shtml, nm2015 / v2 / article / incut, incut2_link ->

The FSB said that currently already taken steps to identify affected computers . As it turned out, “kibershpiony” attacked “victims” on the entire territory of Russia. Who can stand for such large-scale attacks, the ministry did not specify.

Viral analyst Artem Baranov said that hackers using similar techniques, are classified as state-sponsored (supported by the state), since the creation of and support for their infrastructure require significant resources.

according to a state Duma deputy, safety Committee member and anti-corruption Ilya Kostunova, the attack can be either foreign countries or competitors of the enterprise.

According to Kostunov, such cases show that the system of information security of important facilities, there are “holes”, so it is necessary, first, to strengthen the control by using antiviral drugs and “network” screen, and water Second, determine for the employees of these enterprises, what programs they can install.

In the State Duma Committee for security and Anti-corruption believe that the virus for cyber espionage was launched the US.

«This is beneficial especially to Americans. Microsoft Company, Oracle. Their software (I’m not talking about the “iron”) filled the anything and everything, and, of course, they are a threat to our information security, and not only information security »,

– said Dmitry Gorovtsov , deputy chairman Irina Spring Committee.

The FSB report also does not specify what kind of damage could be caused to the companies, but said that “the risks are minimized,” In his opinion, what kind of damage could cause the attackers to evaluate difficult, as in the case of fraudsters such attacks primarily care about is to identify the amount of the stolen information was impossible

<-.! place 7750625,/tech/2015/09/11/7750625/personal-data-leaks-report.shtml,nm2015/v2/article/incut,incut3_link ->

In 2015, more than 70 million malicious actions on the state of Internet resources, reported in May, the president of International Cooperation in the field of information security Andrey Krutskikh was recorded in Russia. According to the FSB, this figure is a fraction – in the last year experts have identified 24 million hacker attacks on government websites. In the Federation Council noted that the hackers behind the attacks change constantly, because of what is necessary to improve the system of protection.

«It is obvious that it is necessary to raise the level of security of information and communication resources, especially those that are used for the needs of defense and national security, law enforcement, stable operation of the economic and financial system, “- said Vladimir Putin in February 2016

at the same time, Putin said that in the upcoming elections to the state Duma intensified foreign. intelligence agencies and the FSB to the task to stop their activities.

in particular, to combat such attacks, the government intends to prohibit the use of foreign software and hardware in the corporate, government and municipal information systems. Minister of Communications and Mass Media Nikolai Nikiforov said that in May – June 2016. Russian software vendors will receive additional funding for these purposes laid 5 billion rubles. He also noted that

bodies of state power of purchasing foreign software in the amount of about 20 billion rubles. . Per year

About a year ago, the Federal Guard Service proposed a more radical way to fully protect the strategically important enterprises and government bodies – the creation of the Russian segment of the Internet public. People holding important government data are often subject to hacking due to the fact that use e-mail to public services, instant messengers, or simply are active in social networks.

This is indicated by Russian hackers from “Anonymous International” ( also known as “Humpty Dumpty”). In August last year, they made an appeal to the FSB, which indicated that the Russian officials ignore safety rules and crack them does not require much effort.

It should be noted that for the most high-profile hacking in Russia is just “Anonymous International”. In the 2014-2016 years, hackers laid out in the open access or trading your personal or business correspondence of senior government officials and the presidential administration. Attacks were also subjected to the staff of defense enterprises, well-known journalists and media managers. Also, the “International” has claimed responsibility for hacking Twitter account, Prime Minister Dmitry Medvedev.

LikeTweet

No comments:

Post a Comment