There's danger ahead. Defense companies, transportation companies, maritime operators, air traffic control systems companies, IT service providers, and logistics groups are increasingly being targeted by hackers from the Fancy Bear group. These infamous hackers have been working on behalf of Moscow for years. And they are targeting Western companies (some French) involved in delivering aid to Ukraine.
Hacking, espionage, sabotage: Fancy Bear on the attack
Their attack methods are varied: brute-force password cracking, targeted phishing to steal credentials, spreading malware, exploiting vulnerabilities in software like Outlook... Enough to seriously disrupt the chain allowing Ukraine to resist the Russian invader.
During one attack, Russia was able to steal credentials giving access to sensitive information about shipments, including train schedules and shipping manifests. This allowed the country to access details of the routes and contents of train, plane, and ship cargoes bound for Ukraine. Prime targets for artillery.
Western governments believe the Kremlin also tracked shipments by hacking into private security cameras accessible via the internet near military bases, border crossings, and train stations.
A threat advisory was issued by intelligence agencies and cybersecurity organizations from about a dozen countries, including France, Germany, the Netherlands, Poland, the United Kingdom, Canada, as well as several U.S. agencies (including the FBI, the NSA, and the Department of Defense's Cybercrime Center). These organizations expect similar targeting and tactics to continue.
Source: CyberSecurityDive.com
0 Comments