Inteligencia y Seguridad Frente Externo En Profundidad Economia y Finanzas Transparencia
  En Parrilla Medio Ambiente Sociedad High Tech Contacto
Inteligencia y Seguridad  
 
04/07/2019 | Hackers - Western spies used ¨crown jewel¨ of espionage tools to hack into Russia’s Google

Joseph Fitsanakis

Hackers used a malware described by experts as the “crown jewel” of cyber-espionage tools to hack into Russia’s version of Google, in an effort to breach user accounts, according to the Reuters news agency. The hackers targeted Yandex (Яндекс), a Moscow-headquartered company that operates as the Russian version of Google.

 

Yandex is the largest technology venture company in the Russian Federation and the fifth most popular search engine in the world. It also provides services such as mapping and email in Russia and several other countries in Central Asia and the Middle East. It claims that it serves more than 150 million monthly users worldwide.

On Thursday, Reuters cited “four people with knowledge on the matter […] in Russia and elsewhere”, who said that Yandex was targeted by a sophisticated hacking operation between October and November of 2018. The news agency said that three of its sources had direct knowledge of the details of the cyber-espionage operation against Yandex. According to the unnamed sources, the hackers appeared to be primarily interested in breaching the accounts of specific employees in Yandex’s research and development unit. Their purpose was to acquire technical information about how Yandex authenticates user accounts. That information could potentially enable them to impersonate Yandex users and access private information, including email messages, geolocation information, and other sensitive private data. Reuters said that the hackers attempted to breach Yandex for purposes of espionage, not sabotage or disruption, or stealing intellectual property for commercial purposes.

Moreover, the hackers used Regin, a highly sophisticated malware that a technical expert from the Symantec Corporation described as “the crown jewel of attack frameworks used for espionage”. Regin was identified as a malware employed by intelligence services of the so-called Five Eyes intelligence alliance between spy agencies of the United Kingdom, Canada, New Zealand, Australia and the United States. It was identified as a Western cyber-espionage tool in 2014, based on revelations made by Edward Snowden, the American former employee of the National Security Agency and the Central Intelligence Agency who defected to Russia. The same malware was used in 2013 to access about a dozen mainframe computers of Belgacom, Belgium’s largest telecommunications service provider, which is partly state-owned. The attack was widely attributed to a consortium of Western intelligence services led by the NSA.

According to Reuters, the hackers were able to penetrate Yandex’s networks for several weeks or longer, without being noticed by the company’s cyber-security monitors. When the penetration was detected, Yandex hired a cyber-security team from the Russian anti-virus firm Kaspersky. The Kaspersky team identified Regin and, according to Reuters, concluded that the hackers behind the cyber-espionage operation were tied to Western intelligence agencies. Kaspersky, the Russian government, and intelligence agencies from the Five Eyes alliance declined requests by Reuters to comment on the story. Yandex confirmed the cyber-espionage attack in a statement to Reuters, but said that its cyber-security experts had been able to detect and “fully neutralize [it] before any damage was done”. Consequently, said Yandex, “no user data was compromised in the attack”.

https://intelnews.org/2019/06/28/01-2577/

Intelnews.org (Estados Unidos)

 



Otras Notas del Autor
fecha
Título
21/10/2019|
20/10/2019|
19/10/2019|
18/10/2019|
17/10/2019|
16/10/2019|
15/10/2019|
15/10/2019|
13/10/2019|
03/10/2019|
01/10/2019|
30/09/2019|
29/09/2019|
18/09/2019|
16/09/2019|
15/09/2019|
14/09/2019|
11/09/2019|
10/09/2019|
07/09/2019|
05/09/2019|
01/09/2019|
31/08/2019|
30/08/2019|
29/08/2019|
24/08/2019|
23/08/2019|
22/08/2019|
20/08/2019|
19/08/2019|
18/08/2019|
17/08/2019|
13/08/2019|
11/08/2019|
10/08/2019|
09/08/2019|
02/08/2019|
31/07/2019|
30/07/2019|
29/07/2019|
19/07/2019|
18/07/2019|
17/07/2019|
16/07/2019|
12/07/2019|
05/07/2019|
01/07/2019|
29/06/2019|
26/06/2019|
28/12/2018|
28/12/2018|
24/12/2018|
21/12/2018|
18/12/2018|
15/12/2018|
14/12/2018|
11/12/2018|
09/12/2018|
07/12/2018|
06/12/2018|
03/12/2018|
02/12/2018|
30/11/2018|
29/11/2018|
27/11/2018|
25/11/2018|
24/11/2018|
08/11/2018|
07/11/2018|
04/11/2018|
03/11/2018|
31/10/2018|
19/10/2018|
16/10/2018|
12/10/2018|
11/10/2018|
08/10/2018|
06/10/2018|
05/10/2018|
25/09/2018|
23/09/2018|
22/09/2018|
20/09/2018|
18/09/2018|
13/09/2018|
11/09/2018|
08/09/2018|
07/09/2018|
05/09/2018|
04/09/2018|
02/09/2018|
01/09/2018|
29/08/2018|
24/08/2018|
23/08/2018|
18/08/2018|
16/08/2018|
14/08/2018|
13/08/2018|
11/08/2018|
05/08/2018|
03/08/2018|
02/08/2018|
30/07/2018|
26/07/2018|
24/07/2018|
19/07/2018|
16/07/2018|
16/07/2018|
16/07/2018|
12/07/2018|
11/07/2018|
02/07/2018|
29/06/2018|
26/06/2018|
23/06/2018|
19/06/2018|
13/06/2018|
12/06/2018|
02/06/2018|
31/05/2018|
25/05/2018|
21/05/2018|
19/05/2018|
18/05/2018|
25/03/2018|
24/03/2018|
14/03/2018|
10/03/2018|
09/03/2018|

ver + notas
 
Center for the Study of the Presidency
Freedom House