russia – Page 5 – SSL and internet security news

Biden Administration Imposes Sanctions on Russia for SolarWinds

April 20, 2021 infossl

cyberespionage, espionage, hacking, national security policy, russia, Security technology, Uncategorized

On April 15, the Biden administration both formally attributed the SolarWinds espionage campaign to the Russian Foreign Intelligence Service (SVR), and imposed a series of sanctions designed to punish the country for the attack and deter future attacks. I will leave it to those with experience in foreign relations to convince me that the response … Read More “Biden Administration Imposes Sanctions on Russia for SolarWinds” »

National Security Risks of Late-Stage Capitalism

March 1, 2021 infossl

china, cybersecurity, essays, hacking, national security policy, russia, Security technology, Uncategorized

Early in 2020, cyberspace attackers apparently working for the Russian government compromised a piece of widely used network management software made by a company called SolarWinds. The hack gave the attackers access to the computer networks of some 18,000 of SolarWinds’s customers, including US government agencies such as the Homeland Security Department and State Department, … Read More “National Security Risks of Late-Stage Capitalism” »

Fake Stories in Real News Sites

July 30, 2020 infossl

cybersecurity, disinformation, fakenews, hacking, propaganda, russia, Security technology

Fireeye is reporting that a hacking group called Ghostwriter broke into the content management systems of Eastern European news sites to plant fake stories. From a Wired story: The propagandists have created and disseminated disinformation since at least March 2017, with a focus on undermining NATO and the US troops in Poland and the Baltics; … Read More “Fake Stories in Real News Sites” »

Business Email Compromise (BEC) Criminal Ring

July 10, 2020 infossl

cybercrime, email, hacking, malware, phishing, russia, Security technology

A criminal group called Cosmic Lynx seems to be based in Russia: Dubbed Cosmic Lynx, the group has carried out more than 200 BEC campaigns since July 2019, according to researchers from the email security firm Agari, particularly targeting senior executives at large organizations and corporations in 46 countries. Cosmic Lynx specializes in topical, tailored … Read More “Business Email Compromise (BEC) Criminal Ring” »

Story of Gus Weiss

March 27, 2020 infossl

deception, disinformation, historyofsecurity, russia, sabotage, Security technology, tradecraft

This is a long and fascinating article about Gus Weiss, who masterminded a long campaign to feed technical disinformation to the Soviet Union, which may or may not have caused a massive pipeline explosion somewhere in Siberia in the 1980s, if in fact there even was a massive pipeline explosion somewhere in Siberia in the … Read More “Story of Gus Weiss” »

Russia Is Trying to Tap Transatlantic Cables

February 24, 2020 infossl

eavesdropping, ireland, russia, Security technology

The Times of London is reporting that Russian agents are in Ireland probing transatlantic communications cables. Ireland is the landing point for undersea cables which carry internet traffic between America, Britain and Europe. The cables enable millions of people to communicate and allow financial transactions to take place seamlessly. Garda and military sources believe the … Read More “Russia Is Trying to Tap Transatlantic Cables” »

Details of the Olympic Destroyer APT

October 21, 2019 infossl

advancedpersistentthreats, attribution, cyberattack, northkorea, russia, Security technology, sports

Interesting details on Olympic Destroyer, the nation-state cyberattack against the 2018 Winter Olympic Games in South Korea. Wired’s Andy Greenberg presents evidence that the perpetrator was Russia, and not North Korea or China. Powered by WPeMatico

New Reductor Nation-State Malware Compromises TLS

October 10, 2019 infossl

attribution, certificates, kaspersky, malware, randomnumbers, russia, Security technology, tls

Kaspersky has a detailed blog post about a new piece of sophisticated malware that it’s calling Reductor. The malware is able to compromise TLS traffic by infecting the computer with hacked TLS engine substituted on the fly, “marking” infected TLS handshakes by compromising the underlining random-number generator, and adding new digital certificates. The result is … Read More “New Reductor Nation-State Malware Compromises TLS” »

New Research into Russian Malware

October 2, 2019 infossl

cyberespionage, malware, operationalsecurity, russia, Security technology

There’s some interesting new research about Russian APT malware: The Russian government has fostered competition among the three agencies, which operate independently from one another, and compete for funds. This, in turn, has resulted in each group developing and hoarding its tools, rather than sharing toolkits with their counterparts, a common sight among Chinese and … Read More “New Research into Russian Malware” »

Russians Hack FBI Comms System

September 24, 2019 infossl

fbi, hacking, russia, Security technology, tracking, trafficanalysis

Yahoo News reported that the Russians have successfully targeted an FBI communications system: American officials discovered that the Russians had dramatically improved their ability to decrypt certain types of secure communications and had successfully tracked devices used by elite FBI surveillance teams. Officials also feared that the Russians may have devised other ways to monitor … Read More “Russians Hack FBI Comms System” »