Tag Archive for: Kremlin

How the Kremlin provides a safe harbor for ransomware

/in


BOSTON — A global epidemic of digital extortion known as ransomware is crippling local governments, hospitals, school districts and businesses by scrambling their data files until they pay up. Law enforcement has been largely powerless to stop it.

One big reason: Ransomware rackets are dominated by Russian-speaking cybercriminals who are shielded — and sometimes employed — by Russian intelligence agencies, according to security researchers, U.S. law enforcement, and now the Biden administration.

On Thursday, as the U.S. slapped sanctions on Russia for malign activities including state-backed hacking, the Treasury Department said Russian intelligence has enabled ransomware attacks by cultivating and co-opting criminal hackers and giving them safe harbor. With ransomware damages now well into the tens of billions of dollars, former British intelligence cyber chief Marcus Willett recently deemed the scourge “arguably more strategically damaging than state cyber-spying.”

The value of Kremlin protection isn’t lost on the cybercriminals themselves. Earlier this year, a Russian-language dark-web forum lit up with criticism of a ransomware purveyor known only as “Bugatti,” whose gang had been caught in a rare U.S.-Europol sting. The assembled posters accused him of inviting the crackdown with technical sloppiness and by recruiting non-Russian affiliates who might be snitches or undercover cops.

Worst of all, in the view of one long-active forum member, Bugatti had allowed Western authorities to seize ransomware servers that could have been sheltered in Russia instead. “Mother Russia will help,” that individual wrote. “Love your country and nothing will happen to you.” The conversation was captured by the security firm Advanced Intelligence, which shared it with the Associated Press.

“Like almost any major industry in Russia, (cybercriminals) work kind of with the tacit consent and sometimes explicit consent of the security services,” said Michael van Landingham, a former CIA analyst who runs the consultancy Active Measures LLC.

Russian authorities have a simple rule, said Karen Kazaryan, CEO of the software industry-supported Internet…

Source…

How Russia’s ‘Info Warrior’ Hackers Let Kremlin Play Geopolitics on the Cheap

/in


The sprawling SolarWinds hack by suspected Russian state-backed hackers is the latest sign of Moscow’s growing resolve and improving technical ability to cause disruption and conduct espionage at a global scale in cyberspace.

The hack, which compromised parts of the U.S. government as well as tech companies, a hospital and a university, adds to a string of increasingly sophisticated and ever more brazen online intrusions, demonstrating how cyber operations have become a key plank in Russia’s confrontation with the West, analysts and officials say.

Moscow’s relations with the West continue to sour, and the Kremlin sees the cyber operations as a cheap and effective way to achieve its geopolitical goals, analysts say. Russia, they say, is therefore unlikely to back off from such tactics, even while facing U.S. sanctions or countermeasures.

“For a country that already perceives itself as being in conflict with the West practically in every domain except open military clashes, there is no incentive to leave any field that can offer an advantage,” said

Keir Giles,

senior consulting fellow at Chatham House think tank.

The scope of Russia’s cyber operations has grown in tandem with Moscow’s global ambitions: from cyberattacks on neighboring Estonia in 2007 to election interference in the U.S. and France a decade later, to SolarWinds, seen as one of the worst known hacks of federal computer systems.

“We can definitely see that Russia is stepping on the gas on cyber operations,” said

Sven Herpig,

a former German government cybersecurity official and expert at German independent public-policy think tank Stiftung Neue Verantwortung. “The development of new tools, the division of labor, the creation of attack platforms, has all increased in sophistication over the years,” he said.

Jamil Jaffer,

a former White House and Justice Department official, said that cyber operations have become “a significant part of [Russia’s] play.”

“It’s allowed them to level up,” said Mr. Jaffer, senior vice…

Source…

Inside The Ukrainian ‘Hacktivist’ Network Cyberbattling The Kremlin – RadioFreeEurope/RadioLiberty

/in

RadioFreeEurope/RadioLiberty

Inside The Ukrainian 'Hacktivist' Network Cyberbattling The Kremlin
RadioFreeEurope/RadioLiberty
He claims the malware allowed CyberHunta not only to retrieve Surkov's e-mail but to "take the entire [Russian] presidential administration system under their control, and they gathered information right from the computers." Andrei Soldatov, one of

and more »

flame malware – read more

Is Kremlin cyber warfare behind Moscow GPS quirk sending Uber cars and Pokemon Go players to strange destinations? – Telegraph.co.uk

/in

Telegraph.co.uk

Is Kremlin cyber warfare behind Moscow GPS quirk sending Uber cars and Pokemon Go players to strange destinations?
Telegraph.co.uk
Try ordering an Uber, chasing a Pokemon, or simply checking your map while out for a stroll in central Moscow, and you may run into problems. Since this summer, Muscovites driving or walking in the centre of the city have complained about the GPS on

and more »

cyber warfare – read more