fbpx
Wikipedia

Cyberwarfare by Russia

January 01, 1970

Cyberwarfare by Russia includes denial of service attacks, hacker attacks, dissemination of disinformation and propaganda, participation of state-sponsored teams in political blogs, internet surveillance using SORM technology, persecution of cyber-dissidents and other active measures.[1] According to investigative journalist Andrei Soldatov, some of these activities were coordinated by the Russian signals intelligence, which was part of the FSB and formerly a part of the 16th KGB department.[2] An analysis by the Defense Intelligence Agency in 2017 outlines Russia's view of "Information Countermeasures" or IPb (informatsionnoye protivoborstvo) as "strategically decisive and critically important to control its domestic populace and influence adversary states", dividing 'Information Countermeasures' into two categories of "Informational-Technical" and "Informational-Psychological" groups. The former encompasses network operations relating to defense, attack, and exploitation and the latter to "attempts to change people's behavior or beliefs in favor of Russian governmental objectives."[3]

Online presence edit

US journalist Pete Earley described his interviews with former senior Russian intelligence officer Sergei Tretyakov, who defected to the United States in 2000:

Sergei would send an officer to a branch of the New York Public Library where he could get access to the Internet without anyone knowing his identity. The officer would post the propaganda on various websites and send it in emails to US publications and broadcasters. Some propaganda would be disguised as educational or scientific reports. ... The studies had been generated at the Center by Russian experts. The reports would be 100% accurate [4]

Tretyakov did not specify the targeted web sites, but made clear they selected the sites which are most convenient for distributing the specific information. According to him, during his work in New York City in the end of the 1990s, one of the most frequent subjects was the War in Chechnya.[4]

According to a publication in Russian computer weekly Computerra, "just because it became known that anonymous editors are editing articles in English Wikipedia in the interests of UK and US intelligence and security services, it is also likely that Russian security services are involved in editing Russian Wikipedia, but this is not even interesting to prove it — because everyone knows that security bodies have a special place in the structure of our [Russian] state"[5]

Cyberattacks edit

It has been claimed that Russian security services organized a number of denial of service attacks as a part of their cyber-warfare against other countries, such as the 2007 cyberattacks on Estonia and the 2008 cyberattacks on Russia, South Ossetia, Georgia, and Azerbaijan.[6][7] One identified young Russian hacker said that he was paid by Russian state security services to lead hacking attacks on NATO computers. He was studying computer sciences at the Department of the Defense of Information. His tuition was paid for by the FSB.[8]

The Russian invasion of Ukraine in February 2022 saw renewed interest in information warfare, with the widespread dissemination of propaganda and misinformation on social media, by way of a large-scale Russian propaganda campaign on social media,[9] especially in countries that abstained from voting on the United Nations Resolution ES-11/1 such as India, South Africa, and Pakistan. Bots played a disproportionate role in the dissemination of pro-Russian messages and amplified its proliferation in early-stage diffusion, especially on platforms like Twitter, where pro-Russian messages received ~251,000 retweets and thereby reached around 14.4 million users. Of these "spreaders", around 20.28% of the spreaders are classified as bots, most of which were created at the beginning of the invasion.[10]

Estonia edit

Main article: 2007 cyberattacks on Estonia

In April 2007, following a diplomatic row with Russia over a Soviet war memorial, Estonia was targeted by a series of cyberattacks on financial, media, and government websites which were taken down by an enormous volume of spam being transmitted by botnets in what is called a distributed denial-of-service attack. Online banking was made inaccessible, government employees were suddenly unable to communicate via e-mail, and media outlets could not distribute news. The attacks reportedly came from Russian IP addresses, online instructions were in Russian, and Estonian officials traced the systems controlling the cyberattacks back to Russia.[11][12] However, some experts held doubts that the attacks were carried out by the Russian government itself.[13] A year after the attack NATO founded the Cooperative Cyber Defence Centre of Excellence in Tallinn as a direct consequence of the attacks.[14]

In response to the 2022 Russian invasion of Ukraine, Estonia has removed a Soviet-era tank monument near Narva.[15] After its removal, Estonia was subject to "the most extensive cyberattack" since the 2007 cyberattacks.[16]

France edit

Further information: 2017 Macron e-mail leaks

In 2015, the Paris-based French broadcasting service TV5Monde was attacked by hackers who used malicious software to attack and destroy the network's systems and take all twelve of its channels off the air. The attack was initially claimed by a group calling themselves the "Cyber Caliphate" however a more in-depth investigation by French authorities revealed the attack on the network had links to APT28, a GRU-affiliated hacker group.[17][18] In May 2017, on the eve of the French presidential election, more than 20,000 e-mails belonging to the campaign of Emmanuel Macron were dumped on an anonymous file-sharing website, shortly after the campaign announced they had been hacked. Word of the leak spread rapidly through the Internet, facilitated by bots and spam accounts. An analysis by Flashpoint, an American cybersecurity firm, determined with "moderate confidence" that APT28 was the group behind the hacking and subsequent leak.[19]

In February 2021 the Agence nationale de la sécurité des systèmes d'information said that "several French entities" were breached by Sandworm between late 2017 and 2020 by hacking French software company Centreon to deploy malware. Similar to the 2020 United States federal government data breach. The ANSSI said the breach "mostly affected information technology providers, especially web hosting providers". Russia has denied being behind the cyberattack. Centreon said in a statement that it "has taken note of the information" but disputed that the breach was linked to a vulnerability in their commercial software.[20][21][22]

Georgia edit

Further information: Cyberattacks during the 2008 South Ossetia war

On 20 July 2008, the website of the Georgian president, Mikheil Saakashvili, was rendered inoperable for twenty-four hours by a series of denial of service attacks. Shortly after, the website of the National Bank of Georgia and the parliament were attacked by hackers who plastered images of Mikheil Saakashvili and former Nazi leader Adolf Hitler. During the war, many Georgian government servers were attacked and brought down, reportedly hindering communication and the dissemination of crucial information. According to technical experts, this is the first recorded instance in history of cyberattacks coinciding with an armed conflict.[23][24]

An independent US-based research institute US Cyber Consequences Unit report stated the attacks had "little or no direct involvement from the Russian government or military". According to the institute's conclusions, some several attacks originated from the PCs of multiple users located in Russia, Ukraine and Latvia. These users were willingly participating in cyberwarfare, being supporters of Russia during the 2008 South Ossetia war, while some other attacks also used botnets.[25][26]

Germany edit

In 2015, a high-ranking security official stated that it was "highly plausible" that a cybertheft of files from the German Parliamentary Committee investigating the NSA spying scandal, later published by WikiLeaks, was conducted by Russian hackers.[27][28] In late 2016, Bruno Kahl, president of the Bundesnachrichtendienst warned of data breaches and misinformation-campaigns steered by Russia.[29] According to Kahl, there are insights that cyberattacks occur with no other purpose than to create political uncertainty.[30][31] Süddeutsche Zeitung reported in February 2017 that a year-long probe by German intelligence "found no concrete proof of [Russian] disinformation campaigns targeting the government".[32] By 2020 however German investigators had collected enough evidence to identify one suspect.[33]

Hans-Georg Maaßen, head of the country's Federal Office for the Protection of the Constitution, noted "growing evidence of attempts to influence the [next] federal election" in September 2017 and "increasingly aggressive cyber espionage" against political entities in Germany.[34] The New York Times reported on 21 September 2017, three days before the German federal election, that there was little to suggest any Russian interference in the election.[35] In 2021 the European Commission has accused Russia of trying to interfere in European democratic processes just days before the parliamentary election on September 26 in Germany.[36]

Kyrgyzstan edit

Beginning in mid-January 2009, Kyrgyzstan's two main ISPs came under a large-scale DDoS attack, shutting down websites and e-mail within the country, effectively taking the nation offline. The attacks came at a time when the country's president, Kurmanbek Bakiyev, was being pressured by both domestic actors and Russia to close a U.S. air base in Kyrgyzstan.[37] The Wall Street Journal reported the attacks had been carried out by a Russian "cyber-militia".[38]

Poland edit

A three-year pro-Russian disinformation campaign on Facebook with an audience of 4.5 million Poles was discovered in early 2019 by OKO.press and Avaaz. The campaign published fake news and supported three Polish pro-Russian politicians and their websites: Adam Andruszkiewicz, former leader of the ultra-nationalist and neo-fascist All-Polish Youth and, as of 2019, Secretary of State in the Polish Ministry of Digitisation; Janusz Korwin-Mikke; and Leszek Miller, an active member of the Polish United Workers' Party during the communist epoch and a prime minister of Poland during the post-communist epoch. Facebook responded to the analysis by removing some of the web pages.[39]

Romania edit

Main article: 2022 cyberattacks on Romania

Between late April and early May 2022, in the midst of the 2022 Russian invasion of Ukraine, multiple Romanian government, military, bank and mass media websites were taken down after a series of DDoS attacks, behind which was a pro-Kremlin hacking group, Killnet. The hacking group described the cyberattacks to be a response to a statement made by then-Senate president, Florin Cîțu that Romania would provide Ukraine with military equipment.[40][41][42]

South Korea edit

According to two United States intelligence officials that talked to The Washington Post, and also the findings of cybersecurity analyst Michael Matonis, Russia is likely behind the cyber attacks against the 2018 Winter Olympics in South Korea.[43] The worm responsible for these cyber attacks is known as "Olympic Destroyer".

The worm targeted all Olympic IT infrastructure, and succeeded in taking down WiFi, feeds to jumbotrons, ticketing systems, and other Olympic systems. It was timed to go off at the start of the opening ceremonies. It was unique in that the hackers attempted to use many false signatures to blame other countries such as North Korea and China.[43]

Ukraine edit

Main article: Russo-Ukrainian cyberwarfare

In March 2014, a Russian cyber weapon called Snake or "Ouroboros" was reported to have created havoc on Ukrainian government systems.[44] The Snake tool kit began spreading into Ukrainian computer systems in 2010. It performed Computer Network Exploitation (CNE), as well as highly sophisticated Computer Network Attacks (CNA).[45]

From 2014 to 2016, according to CrowdStrike, the Russian APT Fancy Bear used Android malware to target the Ukrainian Army's Rocket Forces and Artillery. They distributed an infected version of an Android app whose original purpose was to control targeting data for the D-30 Howitzer artillery. The app, used by Ukrainian officers, was loaded with the X-Agent spyware and posted online on military forums. CrowdStrike claims the attack was successful, with more than 80% of Ukrainian D-30 Howitzers destroyed, the highest percentage loss of any artillery pieces in the army (a percentage that had never been previously reported and would mean the loss of nearly the entire arsenal of the biggest artillery piece of the Ukrainian Armed Forces.[46]).[47] According to the Ukrainian army, this number is incorrect and that losses in artillery weapons "were way below those reported" and that these losses "have nothing to do with the stated cause".[48]

The U.S. government concluded after a study that a cyber attack caused a power outage in Ukraine which left more than 200,000 people temporarily without power. The Russian hacking group Sandworm or the Russian government were possibly behind the malware attack on the Ukrainian power grid as well as a mining company and a large railway operator in December 2015.[49][50][51][52][53][54] A similar attack occurred in December 2016.[55]

In February 2021 Ukraine accused Russia of attacking the System of Electronic Interaction of Executive Bodies a web portal used by the Ukrainian government to circulate documents by uploaded documents that contained macroscripts which if downloaded and enabled would lead to the computer to secretly download malware that would allow hackers to take over a computer.[56][57]

In January 2022, a cyberattack on Ukraine took down the website of the Ministry of Foreign Affairs and other government agencies.[58] Although an investigation has not been conclusive the cyber attacks coincide with the Russo-Ukrainian crisis.

In February 2022, before and after Russian troops entered eastern Ukraine amid an environment of escalating tensions between Ukraine and Russia, several major Ukrainian governmental and business websites were taken down by a series of cyberattacks. U.S. officials attributed the attacks to Russian attackers, although the Russian government denied involvement.[59]

2014 Ukrainian presidential election edit

Pro-Russian hackers launched a series of cyberattacks over several days to disrupt the May 2014 Ukrainian presidential election, releasing hacked emails, attempting to alter vote tallies, and delaying the final result with distributed denial-of-service (DDOS) attacks.[60][61] Malware that would have displayed a graphic declaring far-right candidate Dmytro Yarosh the electoral winner was removed from Ukraine's Central Election Commission less than an hour before polls closed. Despite this, Channel One Russia "reported that Mr. Yarosh had won and broadcast the fake graphic, citing the election commission's website, even though it had never appeared there."[60][62] According to Peter Ordeshook: "These faked results were geared for a specific audience in order to feed the Russian narrative that has claimed from the start that ultra-nationalists and Nazis were behind the revolution in Ukraine."[60]

United Kingdom "Brexit" referendum edit

Main article: Russian interference in the 2016 Brexit referendum

In the run up to the 2016 referendum on the United Kingdom exiting the European Union ("Brexit"), Prime Minister David Cameron suggested that Russia "might be happy" with a positive Brexit vote, while the Remain campaign accused the Kremlin of secretly backing a positive Brexit vote.[63] In December 2016, Ben Bradshaw MP claimed in Parliament that Russia had interfered in the Brexit referendum campaign.[64] In February 2017, Bradshaw called on the British intelligence service, Government Communications Headquarters, then under Boris Johnson as Foreign Secretary, to reveal the information it had on Russian interference.[65] In April 2017, the House of Commons Public Administration and Constitutional Affairs Select Committee issued a report stating, in regard to the June 2016 collapse of the government's voter registration website less than two hours prior to the originally scheduled registration deadline (which was then extended), that "the crash had indications of being a DDOS 'attack.'" The report also stated that there was "no direct evidence" supporting "these allegations about foreign interference". A Cabinet Office spokeswoman responded to the report: "We have been very clear about the cause of the website outage in June 2016. It was due to a spike in users just before the registration deadline. There is no evidence to suggest malign intervention."[66][67]

In June 2017, it was reported by The Guardian that "Leave" campaigner Nigel Farage was a "person of interest" in the United States Federal Bureau of Investigation into Russian interference in the United States 2016 Presidential election.[68] In October 2017, Members of Parliament in the Culture, Media and Sport Committee demanded that Facebook, Twitter, Google and other social media corporations, to disclose all adverts and details of payments by Russia in the Brexit campaign.[69]

In December 2023 the UK and its allies have accused Russia of a sustained cyber attacks dating back at least from 2015 until 2023. These attacks have included targeting parliamentarians from various political parties as well as universities, journalists and NGOs. The star Blizzard group has been named as the group behind the attack is also thought to be subordinate to the Russian government.[70]

United States edit

See also: Russian interference in the 2016 United States elections, Russian interference in the 2018 United States elections, and Russian interference in the 2020 United States elections
 
Putin's Asymmetric Assault on Democracy in Russia and Europe: Implications for U.S. National Security

In 1999, Moonlight Maze was the US investigation of a 1996-1999 Russian cyberattack against NASA, the Pentagon, the US military, civilian academics and government agencies. The cyberattack was attributed to Russian-state-sponsored hackers.[71][72][73]

The 2008 cyberattack on the United States was connected to Russian language threat actors.[74]

In April 2015, CNN reported that "Russian hackers" had "penetrated sensitive parts of the White House" computers in "recent months". It was said that the FBI, the Secret Service, and other U.S. intelligence agencies categorized the attacks as "among the most sophisticated attacks ever launched against U.S. government systems."[75]

In 2015, CNN reported that Russian hackers, likely working for the Russian government, are suspected in the State Department hack. Federal law enforcement, intelligence and congressional officials briefed on the investigation say the hack of the State Department email system is the "worst ever" cyberattack intrusion against a federal agency.[76]

In February 2016, senior Kremlin advisor and top Russian cyber official Andrey Krutskikh told the Russian national security conference in Moscow that Russia was working on new strategies for the "information arena" that was equivalent to testing a nuclear bomb and would "allow us to talk to the Americans as equals".[77]

In 2016, the release of hacked emails belonging to the Democratic National Committee, John Podesta, and Colin Powell, among others, through DCLeaks and WikiLeaks was said by private sector analysts[78] and US intelligence services[79] to have been of Russian origin.[80][81] Also, in December 2016, Republicans and Democrats on the Senate Committee on Armed Services called for "a special select committee to investigate Russian attempts to influence the presidential election".[82][83]

In 2018, the United States Computer Emergency Response Team released an alert warning that the Russian government was executing "a multi-stage intrusion campaign by Russian government cyber actors who targeted small commercial facilities' networks where they staged malware, conducted spear phishing, and gained remote access into energy sector networks." It further noted that "[a]fter obtaining access, the Russian government cyber actors conducted network reconnaissance, moved laterally, and collected information pertaining to Industrial Control Systems."[84] The hacks targeted at least a dozen U.S. power plants, in addition to water processing, aviation, and government facilities.[85]

In June 2019, the New York Times reported that hackers from the United States Cyber Command planted malware potentially capable of disrupting the Russian electrical grid.[86] According to Wired senior writer Andy Greenberg, "The Kremlin warned that the intrusions could escalate into a cyberwar between the two countries."[86]

Over several months in 2020, a group known as APT29 or Cozy Bear, working for Russia's Foreign Intelligence Service, breached a top cybersecurity firm and multiple U.S. government agencies including the Treasury, Commerce, and Energy departments and the National Nuclear Security Administration.[87] The hacks occurred through a network management system called SolarWinds Orion. The U.S. government had an emergency meeting on 12 December 2020, and the press reported the hack the next day. When Russia's Foreign Intelligence Service performs such hacks, it is typically "for traditional espionage purposes, stealing information that might help the Kremlin understand the plans and motives of politicians and policymakers," according to The Washington Post, and not for the purpose of leaking information to the public.[88]

Further information: 2020 United States federal government data breach

In February 2021 a report by Dragos stated that Sandworm has been targeting US electric utilities, oil and gas, and other industrial firms since at least 2017 and were successful in breaching these firms a "handful" of times.[89][90]

In May 2021, the Colonial Pipeline ransomware attack was perpetrated by Russian language hacking group DarkSide.[91][92] It was the largest cyberattack on an energy infrastructure target in US history. Colonial Pipeline temporarily halted the operations of the pipeline due to the ransomware attack.[93] The Department of Justice recovered the bitcoin ransom from the hackers.[94]

Venezuela edit

After the news website Runrun.es published a report on extrajudicial killings by the Bolivarian National Police, on 25 May 2019, the Venezuelan chapter of the Instituto de Prensa y Sociedad (IPYS), pointed out that the website was out of service due to an uncached request attack, denouncing that it originated from Russia.[95]

False alarms edit

On 30 December 2016, Burlington Electric Department, a Vermont utility company, announced that code associated with the Russian hacking operation dubbed Grizzly Steppe had been found in their computers. Officials from the Department of Homeland Security, FBI and the Office of the Director of National Intelligence warned executives of the financial, utility and transportation industries about the malware code.[96] The first report by The Washington Post left the impression that the grid had been penetrated, but the hacked computer was not attached to the grid. A later version attached this disclaimer to the top of its report correcting that impression: "Editor's Note: An earlier version of this story incorrectly said that Russian hackers had penetrated the U.S. electric grid. Authorities say there is no indication of that so far. The computer at Burlington Electric that was hacked was not attached to the grid."[97]

See also edit

References edit

  1. ^ Kantchev, Georgi; Strobel, Warren P. (2 January 2021). "How Russia's 'Info Warrior' Hackers Let Kremlin Play Geopolitics on the Cheap". Wall Street Journal. from the original on 8 January 2021. Retrieved 12 January 2021.
  2. ^ State control over the internet 22 August 2009 at the Wayback Machine, a talk show by Yevgenia Albats at the Echo of Moscow, 22 January 2006; interview with Andrei Soldatov and others
  3. ^ "Military Power Publications". www.dia.mil. from the original on 26 September 2017. Retrieved 25 September 2017.
  4. ^ a b Pete Earley, "Comrade J: The Untold Secrets of Russia's Master Spy in America After the End of the Cold War", Penguin Books, 2007, ISBN 978-0-399-15439-3, pages 194-195
  5. ^ Is there only one truth? 14 April 2009 at the Wayback Machine by Kivy Bird, Computerra, 26 November 2008
  6. ^ . Archived from the original on 17 August 2016. Retrieved 1 August 2016.
  7. ^ Cyberspace and the changing nature of warfare 3 December 2008 at the Wayback Machine. Strategists must be aware that part of every political and military conflict will take place on the internet, says Kenneth Geers.
  8. ^ Andrew Meier, Black Earth. W. W. Norton & Company, 2003, ISBN 0-393-05178-1, pages 15-16.
  9. ^ "Social Media as a Propaganda Tool in the Russia-Ukraine Conflict". The Cairo Review of Global Affairs. 12 March 2023. Retrieved 1 February 2024.
  10. ^ Geissler, Dominique; Bär, Dominik; Pröllochs, Nicolas; Feuerriegel, Stefan (December 2023). "Russian propaganda on social media during the 2022 invasion of Ukraine". EPJ Data Science. 12 (1): 1–20. arXiv:2211.04154. doi:10.1140/epjds/s13688-023-00414-5. ISSN 2193-1127.
  11. ^ McGuinness, Damien (27 April 2017). "How a cyber attack transformed Estonia". BBC News. from the original on 21 February 2018. Retrieved 24 February 2018.
  12. ^ "10 Years After the Landmark Attack on Estonia, Is the World Better Prepared for Cyber Threats?". Foreign Policy. 27 April 2017. from the original on 24 February 2018. Retrieved 24 February 2018.
  13. ^ "Experts doubt Russian government launched DDoS attacks". SearchSecurity. 23 February 2018. from the original on 24 February 2018. Retrieved 24 February 2018.
  14. ^ "NATO launches cyber defence centre in Estonia". Military Space News, Nuclear Weapons, Missile Defense. 14 May 2008. from the original on 11 August 2014. Retrieved 24 February 2018.
  15. ^ "Estonia Removes Soviet-era Monument, Citing Public Order". Associated Press. 16 August 2022. Retrieved 18 August 2022.
  16. ^ Pascale Davies (18 August 2022). "Estonia hit by 'most extensive' cyberattack since 2007 amid tensions with Russia over Ukraine war". Retrieved 18 August 2022.
  17. ^ Corera, Gordon (10 October 2016). "How France's TV5 was almost destroyed". BBC News. from the original on 15 March 2018. Retrieved 10 March 2018.
  18. ^ "'Russian hackers' behind TV attack". BBC News. 9 June 2015. from the original on 30 April 2018. Retrieved 10 March 2018.
  19. ^ "Researchers link Macron hack to APT28 with 'moderate confidence'". Cyberscoop. 11 May 2017. from the original on 16 January 2018. Retrieved 10 March 2018.
  20. ^ Cimpanu, Catalin. "France: Russian state hackers targeted Centreon servers in years-long campaign". ZDNet. from the original on 17 February 2021. Retrieved 18 February 2021.
  21. ^ "France uncovers cybersecurity breaches linked to Russian hackers". France 24. 16 February 2021. from the original on 17 February 2021. Retrieved 18 February 2021.
  22. ^ "France identifies Russia-linked hackers in large cyberattack". POLITICO. 15 February 2021. from the original on 17 February 2021. Retrieved 18 February 2021.
  23. ^ Hart, Kim (14 August 2008). "Longtime Battle Lines Are Recast In Russia and Georgia's Cyberwar". The Washington Post. from the original on 13 March 2018. Retrieved 12 March 2018.
  24. ^ Markoff, John (13 August 2008). "Before the Gunfire, Cyberattacks". The New York Times. from the original on 30 March 2019. Retrieved 12 March 2018.
  25. ^ Siobhan Gorman (18 August 2009). "Hackers Stole IDs for Attacks". WSJ. from the original on 10 August 2017. Retrieved 3 August 2017.
  26. ^ "Georgian cyber attacks launched by Russian crime gangs". The Register. from the original on 10 August 2017. Retrieved 10 August 2017.
  27. ^ "Russia behind hack on German parliament, paper reports". Deutsche Welle. from the original on 2 February 2017. Retrieved 30 January 2017.
  28. ^ Wehner, Markus; Lohse, Eckart (11 December 2016). "Wikileaks: Sicherheitskreise: Russland hackte geheime Bundestagsakten". Faz.net. Frankfurter Allgemeine Zeitung. from the original on 5 February 2017. Retrieved 30 January 2017.
  29. ^ "Vor Bundestagswahl: BND warnt vor russischen Hackerangriffen". Der Spiegel. SPIEGEL ONLINE. 29 November 2016. from the original on 1 February 2017. Retrieved 30 January 2017.
  30. ^ "Was bedeuten die neuen Cyberangriffe für die Bundestagswahl?" (in German). 1 November 2016. from the original on 2 February 2017. Retrieved 30 January 2017.
  31. ^ "BND-Präsident warnt vor Cyberangriffen aus Russland". 29 November 2016. from the original on 2 February 2017. Retrieved 30 January 2017.
  32. ^ King, Esther (7 February 2017). "German intelligence finds no evidence of Russian meddling". Politico. from the original on 21 October 2017. Retrieved 21 October 2017.
  33. ^ "German authorities charge Russian hacker for 2015 Bundestag hack | ZDNet". www.zdnet.com. from the original on 29 July 2020. Retrieved 28 June 2020.
  34. ^ "BfV: Russia is trying to destabilise Germany". AlJazeera. from the original on 30 January 2017. Retrieved 30 January 2017.
  35. ^ Schwirtz, Michael (21 September 2017). "German Election Mystery: Why No Russian Meddling?". The New York Times. from the original on 21 October 2017. Retrieved 21 October 2017.
  36. ^ Vasco Cotovio (24 September 2021). "Russia accused of 'Ghostwriter' cyberattacks ahead of German election". CNN. Retrieved 25 September 2021.
  37. ^ Bradbury, Danny (5 February 2009). "Danny Bradbury investigates the cyberattack on Kyrgyzstan". The Guardian. from the original on 13 March 2018. Retrieved 12 March 2018.
  38. ^ Rhoads, Christopher (28 January 2009). "Kyrgyzstan Knocked Offline". WSJ. from the original on 13 March 2018. Retrieved 12 March 2018.
  39. ^ Flis, Daniel (24 April 2019). "Disinformation network on Facebook supported by Polish Deputy Minister of Digitization". vsquare.org. from the original on 10 July 2019. Retrieved 2 June 2019.
  40. ^ "UPDATE Atacul cibernetic care a vizat site-uri guvernamentale, printre care al Executivului și al Armatei, revendicat de hackeri ruși". www.digi24.ro (in Romanian). 29 April 2022. Retrieved 8 May 2022.
  41. ^ "Site-urile marilor aeroporturi din România nu funcționează. Hackerii ruși de la Killnet revendică atacul". www.digi24.ro (in Romanian). 2 May 2022. Retrieved 8 May 2022.
  42. ^ "Ce spune Marcel Ciolacu, preşedintele Camerei Deputaţilor, despre motivele invocate de hackerii Killnet: E o greşeală acolo". ZF.ro (in Romanian). Retrieved 8 May 2022.
  43. ^ a b "Inside Olympic Destroyer, the Most Deceptive Hack in History". Wired. ISSN 1059-1028. from the original on 18 September 2020. Retrieved 26 August 2020.
  44. ^ The Christian Science Monitor (12 March 2014). "Russia's cyber weapons hit Ukraine: How to declare war without declaring war". The Christian Science Monitor. from the original on 14 March 2014. Retrieved 14 March 2014.
  45. ^ Mazanec, Brain M. (2015). The Evolution of Cyber War. USA: University of Nebraska Press. pp. 221–222. ISBN 9781612347639.
  46. ^ Ukraine's military denies Russian hack attack 7 January 2017 at the Wayback Machine, Yahoo! News (6 January 2017)
  47. ^ "Danger Close: Fancy Bear Tracking of Ukrainian Field Artillery Units". CrowdStrike. 22 December 2016. from the original on 1 January 2017. Retrieved 2 January 2017.
  48. ^ Defense ministry denies reports of alleged artillery losses because of Russian hackers' break into software 7 January 2017 at the Wayback Machine, Interfax-Ukraine (6 January 2017)
  49. ^ "Malware Found Inside Downed Ukrainian Grid Management Points to Cyberattack". Motherboard. 4 January 2016. from the original on 7 January 2016. Retrieved 6 January 2016.
  50. ^ "SANS Industrial Control Systems Security Blog - Potential Sample of Malware from the Ukrainian Cyber Attack Uncovered - SANS Institute". from the original on 31 July 2016. Retrieved 1 August 2016.
  51. ^ "First known hacker-caused power outage signals troubling escalation". Ars Technica. 2016. from the original on 16 June 2017. Retrieved 14 June 2017.
  52. ^ "Ukraine power grid attacks continue but BlackEnergy malware ruled out". from the original on 6 January 2016. Retrieved 6 January 2016.
  53. ^ "U.S. government concludes cyber attack caused Ukraine power outage". Reuters. 25 February 2016. from the original on 21 April 2016. Retrieved 1 August 2016.
  54. ^ "BlackEnergy malware activity spiked in runup to Ukraine power grid takedown". The Register. from the original on 27 December 2016. Retrieved 26 December 2016.
  55. ^ "Ukraine's power outage was a cyber attack: Ukrenergo". Reuters. 18 January 2017. from the original on 26 February 2021. Retrieved 25 February 2021.
  56. ^ "Ukraine reports cyber-attack on government document management system". ZDNet. from the original on 25 February 2021. Retrieved 25 February 2021.
  57. ^ "Ukraine says Russia hacked its document portal and planted malicious files". 24 February 2021. from the original on 25 February 2021. Retrieved 25 February 2021.
  58. ^ Harding, Luke. "Ukraine hit by 'massive' cyber-attack on government websites". The Guardian. Retrieved 14 January 2022.
  59. ^ Lauren Feiner (23 February 2022). "Cyberattack hits Ukrainian banks and government websites". CBNC. Archived from the original on 23 February 2022. Retrieved 23 February 2022.
  60. ^ a b c Clayton, Mark (17 June 2014). "Ukraine election narrowly avoided 'wanton destruction' from hackers". The Christian Science Monitor. from the original on 13 October 2020. Retrieved 16 August 2017.
  61. ^ Watkins, Ali (14 August 2017). "Obama team was warned in 2014 about Russian interference". Politico. from the original on 6 October 2020. Retrieved 16 August 2017.
  62. ^ Kramer, Andrew E.; Higgins, Andrew (16 August 2017). "In Ukraine, a Malware Expert Who Could Blow the Whistle on Russian Hacking". The New York Times. from the original on 25 October 2020. Retrieved 16 August 2017.
  63. ^ S Rosenberg, 'EU referendum: What does Russia gain from Brexit?' (26 June 2016) BBC News 24 June 2018 at the Wayback Machine
  64. ^ Highly probable' that Russia interfered in Brexit referendum, Labour MP says' (13 December 2016) Independent 13 December 2016 at the Wayback Machine
  65. ^ J Kanter and A Bienkov, 'Labour MPs think the government is hiding info about Russia interfering with Brexit' (23 February 2016) Business Insider 4 February 2021 at the Wayback Machine
  66. ^ Syal, Rajeev (12 April 2017). "Brexit: foreign states may have interfered in vote, report says". The Guardian. from the original on 1 October 2017. Retrieved 21 October 2017.
  67. ^ Teffer, Peter (12 April 2017). "MPs and media create Brexit hacking scare". EUobserver. from the original on 21 October 2017. Retrieved 21 October 2017.
  68. ^ 'Nigel Farage is 'person of interest' in FBI investigation into Trump and Russia 2 June 2017 at the Wayback Machine' (2 June 2017) Guardian
  69. ^ 'MPs order Facebook to hand over evidence of Russian election meddling' (24 October 2017) Telegraph 16 December 2017 at the Wayback Machine
  70. ^ "UK and allies expose Russian intelligence services for cyber campaign of attempted political interference". www.ncsc.gov.uk. Retrieved 7 December 2023.
  71. ^ Kaplan, Fred (20 March 2016). "How the United States Learned to Cyber Sleuth: The Untold Story". POLITICO Magazine. Retrieved 16 August 2022.
  72. ^ "New Evidence Links a 20-Year-Old Hack on the US Government to a Modern Attack Group". www.vice.com. 4 April 2017. Retrieved 16 August 2022.
  73. ^ Loeb, Vernon (7 May 2001). "NSA Adviser Says Cyber-Assaults On Pentagon Persist With Few Clues". Washington Post. ISSN 0190-8286. Retrieved 16 August 2022.
  74. ^ III, William J. Lynn (16 October 2020). "Defending a New Domain". ISSN 0015-7120. Retrieved 16 August 2022.
  75. ^ Evan Perez; Shimon Prokupecz (8 April 2015). "How the U.S. thinks Russians hacked the White House". CNN. from the original on 19 May 2019. Retrieved 17 December 2016. Russian hackers behind the damaging cyber intrusion of the State Department in recent months used that perch to penetrate sensitive parts of the White House computer system, according to U.S. officials briefed on the investigation.
  76. ^ Evan Perez and Shimon Prokupecz (10 March 2015). "Sources: State Dept Hack the 'worst ever'". CNN. from the original on 1 February 2017. Retrieved 5 February 2017.
  77. ^ Ignatius, David (18 January 2017). "Russia's radical new strategy for information warfare". The Washington Post. from the original on 23 March 2017. Retrieved 22 March 2017.
  78. ^ Thielman, Sam; Ackerman, Spencer (29 July 2016). "Cozy Bear and Fancy Bear: did Russians hack Democratic party and if so, why?". The Guardian. from the original on 15 December 2016. Retrieved 12 December 2016.
  79. ^ Ackerman, Spencer; Thielman, Sam (8 October 2016). "US officially accuses Russia of hacking DNC and interfering with election". from the original on 7 October 2016. Retrieved 12 December 2016.
  80. ^ Corera, Gordon (22 December 2016). "Can US election hack be traced to Russia?". BBC. from the original on 22 December 2016. Retrieved 23 December 2016.
  81. ^ Gallagher, Sean (12 December 2016). "Did the Russians "hack" the election? A look at the established facts". arstechnica. from the original on 1 January 2017. Retrieved 23 December 2016.
  82. ^ Savage, David (18 December 2016). "'How much and what damage?' Senators call for a special committee to investigate Russian hacking". Los Angeles Times. from the original on 19 December 2016. Retrieved 20 December 2016.
  83. ^ Nakashima, Ellen (22 December 2016). "Cybersecurity firm finds evidence that Russian military unit was behind DNC hack". The Washington Post. from the original on 9 September 2017. Retrieved 22 December 2016.
  84. ^ "Russian Government Cyber Activity Targeting Energy and Other Critical Infrastructure Sectors | CISA". us-cert.cisa.gov. 16 March 2018. from the original on 21 October 2020. Retrieved 23 October 2020.
  85. ^ Dlouhy, Jennifer; Riley, Michael (15 March 2018). "Russian Hackers Attacking U.S. Power Grid and Aviation, FBI Warns". Bloomberg. from the original on 23 July 2018. Retrieved 23 July 2018.
  86. ^ a b "How Not To Prevent a Cyberwar With Russia". Wired. 18 June 2019. from the original on 23 June 2019. Retrieved 4 January 2021.
  87. ^ Bertrand, Natasha (17 December 2020). "Nuclear weapons agency breached amid massive cyber onslaught". POLITICO. from the original on 17 December 2020. Retrieved 18 December 2020.
  88. ^ Nakashima, Ellen (13 December 2020). "Russian government spies are behind a broad hacking campaign that has breached U.S. agencies and a top cyber firm". The Washington Post. from the original on 13 December 2020. Retrieved 13 December 2020.
  89. ^ "Hackers Tied to Russia's GRU Targeted the US Grid for Years". Wired. ISSN 1059-1028. from the original on 2 March 2021. Retrieved 2 March 2021.
  90. ^ Palmer, Danny. "These four new hacking groups are targeting critical infrastructure, warns security company". ZDNet. from the original on 2 March 2021. Retrieved 2 March 2021.
  91. ^ "Colonial Pipeline hack explained: Everything you need to know". Retrieved 16 August 2022.
  92. ^ "FBI Statement on Compromise of Colonial Pipeline Networks". Federal Bureau of Investigation. Retrieved 16 August 2022.
  93. ^ Gonzalez, Gloria; Lefebvre, Ben; Geller, Eric (8 May 2021). "'Jugular' of the U.S. fuel pipeline system shuts down after cyberattack". Politico. from the original on 9 May 2021. The infiltration of a major fuel pipeline is "the most significant, successful attack on energy infrastructure we know of".
  94. ^ "Recovery of Colonial Pipeline ransom funds highlights traceability of cryptocurrency, experts say". Thomson Reuters Institute. 23 June 2021. Retrieved 16 August 2022.
  95. ^ "Runrunes es víctima de ataques cibernéticos tras reportaje sobre las FAES" (in Spanish). Tal Cual. 27 May 2019. from the original on 27 May 2019. Retrieved 27 May 2019.
  96. ^ Eilperen, Juliet &, Entous, Adam (30 December 2016). "Russian operation hacked a Vermont utility, showing risk to U.S. electrical grid security, officials say". The Washington Post. from the original on 5 January 2017. Retrieved 31 December 2016.{{cite news}}: CS1 maint: multiple names: authors list (link)
  97. ^ Eilperin, Juliet; Entous, Adam (31 December 2016). "Russian operation hacked a Vermont utility, showing risk to U.S. electrical grid security, officials say". The Washington Post. from the original on 7 January 2018. Retrieved 16 January 2018.

Further reading edit

  • Bowen, A.S. (4 January 2021) "Russian Cyber Units". Congressional Research Service.
  • Ackerman, S. and Thielman, S. (8 October 2016) "US Officially Accuses Russia of Hacking DNC and Interfering with Election". The Guardian.
  • Halpern, Sue, "The Drums of Cyberwar" (review of Andy Greenberg, Sandworm: A New Era of Cyberwar and the Hunt for the Kremlin's Most Dangerous Hackers, Doubleday, 2019, 348 pp.), The New York Review of Books, vol. LXVI, no. 20 (19 December 2019), pp. 14, 16, 20.

January 01, 1970
cyberwarfare, russia, includes, denial, service, attacks, hacker, attacks, dissemination, disinformation, propaganda, participation, state, sponsored, teams, political, blogs, internet, surveillance, using, sorm, technology, persecution, cyber, dissidents, oth. Cyberwarfare by Russia includes denial of service attacks hacker attacks dissemination of disinformation and propaganda participation of state sponsored teams in political blogs internet surveillance using SORM technology persecution of cyber dissidents and other active measures 1 According to investigative journalist Andrei Soldatov some of these activities were coordinated by the Russian signals intelligence which was part of the FSB and formerly a part of the 16th KGB department 2 An analysis by the Defense Intelligence Agency in 2017 outlines Russia s view of Information Countermeasures or IPb informatsionnoye protivoborstvo as strategically decisive and critically important to control its domestic populace and influence adversary states dividing Information Countermeasures into two categories of Informational Technical and Informational Psychological groups The former encompasses network operations relating to defense attack and exploitation and the latter to attempts to change people s behavior or beliefs in favor of Russian governmental objectives 3 Contents 1 Online presence 2 Cyberattacks 2 1 Estonia 2 2 France 2 3 Georgia 2 4 Germany 2 5 Kyrgyzstan 2 6 Poland 2 7 Romania 2 8 South Korea 2 9 Ukraine 2 9 1 2014 Ukrainian presidential election 2 10 United Kingdom Brexit referendum 2 11 United States 2 12 Venezuela 3 False alarms 4 See also 5 References 6 Further readingOnline presence editUS journalist Pete Earley described his interviews with former senior Russian intelligence officer Sergei Tretyakov who defected to the United States in 2000 Sergei would send an officer to a branch of the New York Public Library where he could get access to the Internet without anyone knowing his identity The officer would post the propaganda on various websites and send it in emails to US publications and broadcasters Some propaganda would be disguised as educational or scientific reports The studies had been generated at the Center by Russian experts The reports would be 100 accurate 4 Tretyakov did not specify the targeted web sites but made clear they selected the sites which are most convenient for distributing the specific information According to him during his work in New York City in the end of the 1990s one of the most frequent subjects was the War in Chechnya 4 According to a publication in Russian computer weekly Computerra just because it became known that anonymous editors are editing articles in English Wikipedia in the interests of UK and US intelligence and security services it is also likely that Russian security services are involved in editing Russian Wikipedia but this is not even interesting to prove it because everyone knows that security bodies have a special place in the structure of our Russian state 5 Cyberattacks editIt has been claimed that Russian security services organized a number of denial of service attacks as a part of their cyber warfare against other countries such as the 2007 cyberattacks on Estonia and the 2008 cyberattacks on Russia South Ossetia Georgia and Azerbaijan 6 7 One identified young Russian hacker said that he was paid by Russian state security services to lead hacking attacks on NATO computers He was studying computer sciences at the Department of the Defense of Information His tuition was paid for by the FSB 8 The Russian invasion of Ukraine in February 2022 saw renewed interest in information warfare with the widespread dissemination of propaganda and misinformation on social media by way of a large scale Russian propaganda campaign on social media 9 especially in countries that abstained from voting on the United Nations Resolution ES 11 1 such as India South Africa and Pakistan Bots played a disproportionate role in the dissemination of pro Russian messages and amplified its proliferation in early stage diffusion especially on platforms like Twitter where pro Russian messages received 251 000 retweets and thereby reached around 14 4 million users Of these spreaders around 20 28 of the spreaders are classified as bots most of which were created at the beginning of the invasion 10 Estonia edit Main article 2007 cyberattacks on Estonia In April 2007 following a diplomatic row with Russia over a Soviet war memorial Estonia was targeted by a series of cyberattacks on financial media and government websites which were taken down by an enormous volume of spam being transmitted by botnets in what is called a distributed denial of service attack Online banking was made inaccessible government employees were suddenly unable to communicate via e mail and media outlets could not distribute news The attacks reportedly came from Russian IP addresses online instructions were in Russian and Estonian officials traced the systems controlling the cyberattacks back to Russia 11 12 However some experts held doubts that the attacks were carried out by the Russian government itself 13 A year after the attack NATO founded the Cooperative Cyber Defence Centre of Excellence in Tallinn as a direct consequence of the attacks 14 In response to the 2022 Russian invasion of Ukraine Estonia has removed a Soviet era tank monument near Narva 15 After its removal Estonia was subject to the most extensive cyberattack since the 2007 cyberattacks 16 France edit Further information 2017 Macron e mail leaks In 2015 the Paris based French broadcasting service TV5Monde was attacked by hackers who used malicious software to attack and destroy the network s systems and take all twelve of its channels off the air The attack was initially claimed by a group calling themselves the Cyber Caliphate however a more in depth investigation by French authorities revealed the attack on the network had links to APT28 a GRU affiliated hacker group 17 18 In May 2017 on the eve of the French presidential election more than 20 000 e mails belonging to the campaign of Emmanuel Macron were dumped on an anonymous file sharing website shortly after the campaign announced they had been hacked Word of the leak spread rapidly through the Internet facilitated by bots and spam accounts An analysis by Flashpoint an American cybersecurity firm determined with moderate confidence that APT28 was the group behind the hacking and subsequent leak 19 In February 2021 the Agence nationale de la securite des systemes d information said that several French entities were breached by Sandworm between late 2017 and 2020 by hacking French software company Centreon to deploy malware Similar to the 2020 United States federal government data breach The ANSSI said the breach mostly affected information technology providers especially web hosting providers Russia has denied being behind the cyberattack Centreon said in a statement that it has taken note of the information but disputed that the breach was linked to a vulnerability in their commercial software 20 21 22 Georgia edit Further information Cyberattacks during the 2008 South Ossetia war On 20 July 2008 the website of the Georgian president Mikheil Saakashvili was rendered inoperable for twenty four hours by a series of denial of service attacks Shortly after the website of the National Bank of Georgia and the parliament were attacked by hackers who plastered images of Mikheil Saakashvili and former Nazi leader Adolf Hitler During the war many Georgian government servers were attacked and brought down reportedly hindering communication and the dissemination of crucial information According to technical experts this is the first recorded instance in history of cyberattacks coinciding with an armed conflict 23 24 An independent US based research institute US Cyber Consequences Unit report stated the attacks had little or no direct involvement from the Russian government or military According to the institute s conclusions some several attacks originated from the PCs of multiple users located in Russia Ukraine and Latvia These users were willingly participating in cyberwarfare being supporters of Russia during the 2008 South Ossetia war while some other attacks also used botnets 25 26 Germany edit In 2015 a high ranking security official stated that it was highly plausible that a cybertheft of files from the German Parliamentary Committee investigating the NSA spying scandal later published by WikiLeaks was conducted by Russian hackers 27 28 In late 2016 Bruno Kahl president of the Bundesnachrichtendienst warned of data breaches and misinformation campaigns steered by Russia 29 According to Kahl there are insights that cyberattacks occur with no other purpose than to create political uncertainty 30 31 Suddeutsche Zeitung reported in February 2017 that a year long probe by German intelligence found no concrete proof of Russian disinformation campaigns targeting the government 32 By 2020 however German investigators had collected enough evidence to identify one suspect 33 Hans Georg Maassen head of the country s Federal Office for the Protection of the Constitution noted growing evidence of attempts to influence the next federal election in September 2017 and increasingly aggressive cyber espionage against political entities in Germany 34 The New York Times reported on 21 September 2017 three days before the German federal election that there was little to suggest any Russian interference in the election 35 In 2021 the European Commission has accused Russia of trying to interfere in European democratic processes just days before the parliamentary election on September 26 in Germany 36 Kyrgyzstan edit Beginning in mid January 2009 Kyrgyzstan s two main ISPs came under a large scale DDoS attack shutting down websites and e mail within the country effectively taking the nation offline The attacks came at a time when the country s president Kurmanbek Bakiyev was being pressured by both domestic actors and Russia to close a U S air base in Kyrgyzstan 37 The Wall Street Journal reported the attacks had been carried out by a Russian cyber militia 38 Poland edit A three year pro Russian disinformation campaign on Facebook with an audience of 4 5 million Poles was discovered in early 2019 by OKO press and Avaaz The campaign published fake news and supported three Polish pro Russian politicians and their websites Adam Andruszkiewicz former leader of the ultra nationalist and neo fascist All Polish Youth and as of 2019 update Secretary of State in the Polish Ministry of Digitisation Janusz Korwin Mikke and Leszek Miller an active member of the Polish United Workers Party during the communist epoch and a prime minister of Poland during the post communist epoch Facebook responded to the analysis by removing some of the web pages 39 Romania edit Main article 2022 cyberattacks on Romania Between late April and early May 2022 in the midst of the 2022 Russian invasion of Ukraine multiple Romanian government military bank and mass media websites were taken down after a series of DDoS attacks behind which was a pro Kremlin hacking group Killnet The hacking group described the cyberattacks to be a response to a statement made by then Senate president Florin Cițu that Romania would provide Ukraine with military equipment 40 41 42 South Korea edit According to two United States intelligence officials that talked to The Washington Post and also the findings of cybersecurity analyst Michael Matonis Russia is likely behind the cyber attacks against the 2018 Winter Olympics in South Korea 43 The worm responsible for these cyber attacks is known as Olympic Destroyer The worm targeted all Olympic IT infrastructure and succeeded in taking down WiFi feeds to jumbotrons ticketing systems and other Olympic systems It was timed to go off at the start of the opening ceremonies It was unique in that the hackers attempted to use many false signatures to blame other countries such as North Korea and China 43 Ukraine edit Main article Russo Ukrainian cyberwarfare In March 2014 a Russian cyber weapon called Snake or Ouroboros was reported to have created havoc on Ukrainian government systems 44 The Snake tool kit began spreading into Ukrainian computer systems in 2010 It performed Computer Network Exploitation CNE as well as highly sophisticated Computer Network Attacks CNA 45 From 2014 to 2016 according to CrowdStrike the Russian APT Fancy Bear used Android malware to target the Ukrainian Army s Rocket Forces and Artillery They distributed an infected version of an Android app whose original purpose was to control targeting data for the D 30 Howitzer artillery The app used by Ukrainian officers was loaded with the X Agent spyware and posted online on military forums CrowdStrike claims the attack was successful with more than 80 of Ukrainian D 30 Howitzers destroyed the highest percentage loss of any artillery pieces in the army a percentage that had never been previously reported and would mean the loss of nearly the entire arsenal of the biggest artillery piece of the Ukrainian Armed Forces 46 47 According to the Ukrainian army this number is incorrect and that losses in artillery weapons were way below those reported and that these losses have nothing to do with the stated cause 48 The U S government concluded after a study that a cyber attack caused a power outage in Ukraine which left more than 200 000 people temporarily without power The Russian hacking group Sandworm or the Russian government were possibly behind the malware attack on the Ukrainian power grid as well as a mining company and a large railway operator in December 2015 49 50 51 52 53 54 A similar attack occurred in December 2016 55 In February 2021 Ukraine accused Russia of attacking the System of Electronic Interaction of Executive Bodies a web portal used by the Ukrainian government to circulate documents by uploaded documents that contained macroscripts which if downloaded and enabled would lead to the computer to secretly download malware that would allow hackers to take over a computer 56 57 In January 2022 a cyberattack on Ukraine took down the website of the Ministry of Foreign Affairs and other government agencies 58 Although an investigation has not been conclusive the cyber attacks coincide with the Russo Ukrainian crisis In February 2022 before and after Russian troops entered eastern Ukraine amid an environment of escalating tensions between Ukraine and Russia several major Ukrainian governmental and business websites were taken down by a series of cyberattacks U S officials attributed the attacks to Russian attackers although the Russian government denied involvement 59 2014 Ukrainian presidential election edit Pro Russian hackers launched a series of cyberattacks over several days to disrupt the May 2014 Ukrainian presidential election releasing hacked emails attempting to alter vote tallies and delaying the final result with distributed denial of service DDOS attacks 60 61 Malware that would have displayed a graphic declaring far right candidate Dmytro Yarosh the electoral winner was removed from Ukraine s Central Election Commission less than an hour before polls closed Despite this Channel One Russia reported that Mr Yarosh had won and broadcast the fake graphic citing the election commission s website even though it had never appeared there 60 62 According to Peter Ordeshook These faked results were geared for a specific audience in order to feed the Russian narrative that has claimed from the start that ultra nationalists and Nazis were behind the revolution in Ukraine 60 United Kingdom Brexit referendum edit Main article Russian interference in the 2016 Brexit referendum In the run up to the 2016 referendum on the United Kingdom exiting the European Union Brexit Prime Minister David Cameron suggested that Russia might be happy with a positive Brexit vote while the Remain campaign accused the Kremlin of secretly backing a positive Brexit vote 63 In December 2016 Ben Bradshaw MP claimed in Parliament that Russia had interfered in the Brexit referendum campaign 64 In February 2017 Bradshaw called on the British intelligence service Government Communications Headquarters then under Boris Johnson as Foreign Secretary to reveal the information it had on Russian interference 65 In April 2017 the House of Commons Public Administration and Constitutional Affairs Select Committee issued a report stating in regard to the June 2016 collapse of the government s voter registration website less than two hours prior to the originally scheduled registration deadline which was then extended that the crash had indications of being a DDOS attack The report also stated that there was no direct evidence supporting these allegations about foreign interference A Cabinet Office spokeswoman responded to the report We have been very clear about the cause of the website outage in June 2016 It was due to a spike in users just before the registration deadline There is no evidence to suggest malign intervention 66 67 In June 2017 it was reported by The Guardian that Leave campaigner Nigel Farage was a person of interest in the United States Federal Bureau of Investigation into Russian interference in the United States 2016 Presidential election 68 In October 2017 Members of Parliament in the Culture Media and Sport Committee demanded that Facebook Twitter Google and other social media corporations to disclose all adverts and details of payments by Russia in the Brexit campaign 69 In December 2023 the UK and its allies have accused Russia of a sustained cyber attacks dating back at least from 2015 until 2023 These attacks have included targeting parliamentarians from various political parties as well as universities journalists and NGOs The star Blizzard group has been named as the group behind the attack is also thought to be subordinate to the Russian government 70 United States edit See also Russian interference in the 2016 United States elections Russian interference in the 2018 United States elections and Russian interference in the 2020 United States elections nbsp Putin s Asymmetric Assault on Democracy in Russia and Europe Implications for U S National Security In 1999 Moonlight Maze was the US investigation of a 1996 1999 Russian cyberattack against NASA the Pentagon the US military civilian academics and government agencies The cyberattack was attributed to Russian state sponsored hackers 71 72 73 The 2008 cyberattack on the United States was connected to Russian language threat actors 74 In April 2015 CNN reported that Russian hackers had penetrated sensitive parts of the White House computers in recent months It was said that the FBI the Secret Service and other U S intelligence agencies categorized the attacks as among the most sophisticated attacks ever launched against U S government systems 75 In 2015 CNN reported that Russian hackers likely working for the Russian government are suspected in the State Department hack Federal law enforcement intelligence and congressional officials briefed on the investigation say the hack of the State Department email system is the worst ever cyberattack intrusion against a federal agency 76 In February 2016 senior Kremlin advisor and top Russian cyber official Andrey Krutskikh told the Russian national security conference in Moscow that Russia was working on new strategies for the information arena that was equivalent to testing a nuclear bomb and would allow us to talk to the Americans as equals 77 In 2016 the release of hacked emails belonging to the Democratic National Committee John Podesta and Colin Powell among others through DCLeaks and WikiLeaks was said by private sector analysts 78 and US intelligence services 79 to have been of Russian origin 80 81 Also in December 2016 Republicans and Democrats on the Senate Committee on Armed Services called for a special select committee to investigate Russian attempts to influence the presidential election 82 83 In 2018 the United States Computer Emergency Response Team released an alert warning that the Russian government was executing a multi stage intrusion campaign by Russian government cyber actors who targeted small commercial facilities networks where they staged malware conducted spear phishing and gained remote access into energy sector networks It further noted that a fter obtaining access the Russian government cyber actors conducted network reconnaissance moved laterally and collected information pertaining to Industrial Control Systems 84 The hacks targeted at least a dozen U S power plants in addition to water processing aviation and government facilities 85 In June 2019 the New York Times reported that hackers from the United States Cyber Command planted malware potentially capable of disrupting the Russian electrical grid 86 According to Wired senior writer Andy Greenberg The Kremlin warned that the intrusions could escalate into a cyberwar between the two countries 86 Over several months in 2020 a group known as APT29 or Cozy Bear working for Russia s Foreign Intelligence Service breached a top cybersecurity firm and multiple U S government agencies including the Treasury Commerce and Energy departments and the National Nuclear Security Administration 87 The hacks occurred through a network management system called SolarWinds Orion The U S government had an emergency meeting on 12 December 2020 and the press reported the hack the next day When Russia s Foreign Intelligence Service performs such hacks it is typically for traditional espionage purposes stealing information that might help the Kremlin understand the plans and motives of politicians and policymakers according to The Washington Post and not for the purpose of leaking information to the public 88 Further information 2020 United States federal government data breach In February 2021 a report by Dragos stated that Sandworm has been targeting US electric utilities oil and gas and other industrial firms since at least 2017 and were successful in breaching these firms a handful of times 89 90 In May 2021 the Colonial Pipeline ransomware attack was perpetrated by Russian language hacking group DarkSide 91 92 It was the largest cyberattack on an energy infrastructure target in US history Colonial Pipeline temporarily halted the operations of the pipeline due to the ransomware attack 93 The Department of Justice recovered the bitcoin ransom from the hackers 94 Venezuela edit After the news website Runrun es published a report on extrajudicial killings by the Bolivarian National Police on 25 May 2019 the Venezuelan chapter of the Instituto de Prensa y Sociedad IPYS pointed out that the website was out of service due to an uncached request attack denouncing that it originated from Russia 95 False alarms editOn 30 December 2016 Burlington Electric Department a Vermont utility company announced that code associated with the Russian hacking operation dubbed Grizzly Steppe had been found in their computers Officials from the Department of Homeland Security FBI and the Office of the Director of National Intelligence warned executives of the financial utility and transportation industries about the malware code 96 The first report by The Washington Post left the impression that the grid had been penetrated but the hacked computer was not attached to the grid A later version attached this disclaimer to the top of its report correcting that impression Editor s Note An earlier version of this story incorrectly said that Russian hackers had penetrated the U S electric grid Authorities say there is no indication of that so far The computer at Burlington Electric that was hacked was not attached to the grid 97 See also editCyberwarfare by China Cyberwarfare in the United States DarkSide hacking group List of cyber warfare forces Military history of the Russian Federation Mueller Report Timeline of Russian interference in the 2016 United States elections Timeline of Russian interference in the 2016 United States elections July 2016 election day Web brigades and Internet Research Agency aka trolls from Olgino Vaccine hesitancy Vulkan files leakReferences edit Kantchev Georgi Strobel Warren P 2 January 2021 How Russia s Info Warrior Hackers Let Kremlin Play Geopolitics on the Cheap Wall Street Journal Archived from the original on 8 January 2021 Retrieved 12 January 2021 State control over the internet Archived 22 August 2009 at the Wayback Machine a talk show by Yevgenia Albats at the Echo of Moscow 22 January 2006 interview with Andrei Soldatov and others Military Power Publications www dia mil Archived from the original on 26 September 2017 Retrieved 25 September 2017 a b Pete Earley Comrade J The Untold Secrets of Russia s Master Spy in America After the End of the Cold War Penguin Books 2007 ISBN 978 0 399 15439 3 pages 194 195 Is there only one truth Archived 14 April 2009 at the Wayback Machine by Kivy Bird Computerra 26 November 2008 www axisglobe com Archived from the original on 17 August 2016 Retrieved 1 August 2016 Cyberspace and the changing nature of warfare Archived 3 December 2008 at the Wayback Machine Strategists must be aware that part of every political and military conflict will take place on the internet says Kenneth Geers Andrew Meier Black Earth W W Norton amp Company 2003 ISBN 0 393 05178 1 pages 15 16 Social Media as a Propaganda Tool in the Russia Ukraine Conflict The Cairo Review of Global Affairs 12 March 2023 Retrieved 1 February 2024 Geissler Dominique Bar Dominik Prollochs Nicolas Feuerriegel Stefan December 2023 Russian propaganda on social media during the 2022 invasion of Ukraine EPJ Data Science 12 1 1 20 arXiv 2211 04154 doi 10 1140 epjds s13688 023 00414 5 ISSN 2193 1127 McGuinness Damien 27 April 2017 How a cyber attack transformed Estonia BBC News Archived from the original on 21 February 2018 Retrieved 24 February 2018 10 Years After the Landmark Attack on Estonia Is the World Better Prepared for Cyber Threats Foreign Policy 27 April 2017 Archived from the original on 24 February 2018 Retrieved 24 February 2018 Experts doubt Russian government launched DDoS attacks SearchSecurity 23 February 2018 Archived from the original on 24 February 2018 Retrieved 24 February 2018 NATO launches cyber defence centre in Estonia Military Space News Nuclear Weapons Missile Defense 14 May 2008 Archived from the original on 11 August 2014 Retrieved 24 February 2018 Estonia Removes Soviet era Monument Citing Public Order Associated Press 16 August 2022 Retrieved 18 August 2022 Pascale Davies 18 August 2022 Estonia hit by most extensive cyberattack since 2007 amid tensions with Russia over Ukraine war Retrieved 18 August 2022 Corera Gordon 10 October 2016 How France s TV5 was almost destroyed BBC News Archived from the original on 15 March 2018 Retrieved 10 March 2018 Russian hackers behind TV attack BBC News 9 June 2015 Archived from the original on 30 April 2018 Retrieved 10 March 2018 Researchers link Macron hack to APT28 with moderate confidence Cyberscoop 11 May 2017 Archived from the original on 16 January 2018 Retrieved 10 March 2018 Cimpanu Catalin France Russian state hackers targeted Centreon servers in years long campaign ZDNet Archived from the original on 17 February 2021 Retrieved 18 February 2021 France uncovers cybersecurity breaches linked to Russian hackers France 24 16 February 2021 Archived from the original on 17 February 2021 Retrieved 18 February 2021 France identifies Russia linked hackers in large cyberattack POLITICO 15 February 2021 Archived from the original on 17 February 2021 Retrieved 18 February 2021 Hart Kim 14 August 2008 Longtime Battle Lines Are Recast In Russia and Georgia s Cyberwar The Washington Post Archived from the original on 13 March 2018 Retrieved 12 March 2018 Markoff John 13 August 2008 Before the Gunfire Cyberattacks The New York Times Archived from the original on 30 March 2019 Retrieved 12 March 2018 Siobhan Gorman 18 August 2009 Hackers Stole IDs for Attacks WSJ Archived from the original on 10 August 2017 Retrieved 3 August 2017 Georgian cyber attacks launched by Russian crime gangs The Register Archived from the original on 10 August 2017 Retrieved 10 August 2017 Russia behind hack on German parliament paper reports Deutsche Welle Archived from the original on 2 February 2017 Retrieved 30 January 2017 Wehner Markus Lohse Eckart 11 December 2016 Wikileaks Sicherheitskreise Russland hackte geheime Bundestagsakten Faz net Frankfurter Allgemeine Zeitung Archived from the original on 5 February 2017 Retrieved 30 January 2017 Vor Bundestagswahl BND warnt vor russischen Hackerangriffen Der Spiegel SPIEGEL ONLINE 29 November 2016 Archived from the original on 1 February 2017 Retrieved 30 January 2017 Was bedeuten die neuen Cyberangriffe fur die Bundestagswahl in German 1 November 2016 Archived from the original on 2 February 2017 Retrieved 30 January 2017 BND Prasident warnt vor Cyberangriffen aus Russland 29 November 2016 Archived from the original on 2 February 2017 Retrieved 30 January 2017 King Esther 7 February 2017 German intelligence finds no evidence of Russian meddling Politico Archived from the original on 21 October 2017 Retrieved 21 October 2017 German authorities charge Russian hacker for 2015 Bundestag hack ZDNet www zdnet com Archived from the original on 29 July 2020 Retrieved 28 June 2020 BfV Russia is trying to destabilise Germany AlJazeera Archived from the original on 30 January 2017 Retrieved 30 January 2017 Schwirtz Michael 21 September 2017 German Election Mystery Why No Russian Meddling The New York Times Archived from the original on 21 October 2017 Retrieved 21 October 2017 Vasco Cotovio 24 September 2021 Russia accused of Ghostwriter cyberattacks ahead of German election CNN Retrieved 25 September 2021 Bradbury Danny 5 February 2009 Danny Bradbury investigates the cyberattack on Kyrgyzstan The Guardian Archived from the original on 13 March 2018 Retrieved 12 March 2018 Rhoads Christopher 28 January 2009 Kyrgyzstan Knocked Offline WSJ Archived from the original on 13 March 2018 Retrieved 12 March 2018 Flis Daniel 24 April 2019 Disinformation network on Facebook supported by Polish Deputy Minister of Digitization vsquare org Archived from the original on 10 July 2019 Retrieved 2 June 2019 UPDATE Atacul cibernetic care a vizat site uri guvernamentale printre care al Executivului și al Armatei revendicat de hackeri ruși www digi24 ro in Romanian 29 April 2022 Retrieved 8 May 2022 Site urile marilor aeroporturi din Romania nu funcționează Hackerii ruși de la Killnet revendică atacul www digi24 ro in Romanian 2 May 2022 Retrieved 8 May 2022 Ce spune Marcel Ciolacu presedintele Camerei Deputaţilor despre motivele invocate de hackerii Killnet E o greseală acolo ZF ro in Romanian Retrieved 8 May 2022 a b Inside Olympic Destroyer the Most Deceptive Hack in History Wired ISSN 1059 1028 Archived from the original on 18 September 2020 Retrieved 26 August 2020 The Christian Science Monitor 12 March 2014 Russia s cyber weapons hit Ukraine How to declare war without declaring war The Christian Science Monitor Archived from the original on 14 March 2014 Retrieved 14 March 2014 Mazanec Brain M 2015 The Evolution of Cyber War USA University of Nebraska Press pp 221 222 ISBN 9781612347639 Ukraine s military denies Russian hack attack Archived 7 January 2017 at the Wayback Machine Yahoo News 6 January 2017 Danger Close Fancy Bear Tracking of Ukrainian Field Artillery Units CrowdStrike 22 December 2016 Archived from the original on 1 January 2017 Retrieved 2 January 2017 Defense ministry denies reports of alleged artillery losses because of Russian hackers break into software Archived 7 January 2017 at the Wayback Machine Interfax Ukraine 6 January 2017 Malware Found Inside Downed Ukrainian Grid Management Points to Cyberattack Motherboard 4 January 2016 Archived from the original on 7 January 2016 Retrieved 6 January 2016 SANS Industrial Control Systems Security Blog Potential Sample of Malware from the Ukrainian Cyber Attack Uncovered SANS Institute Archived from the original on 31 July 2016 Retrieved 1 August 2016 First known hacker caused power outage signals troubling escalation Ars Technica 2016 Archived from the original on 16 June 2017 Retrieved 14 June 2017 Ukraine power grid attacks continue but BlackEnergy malware ruled out Archived from the original on 6 January 2016 Retrieved 6 January 2016 U S government concludes cyber attack caused Ukraine power outage Reuters 25 February 2016 Archived from the original on 21 April 2016 Retrieved 1 August 2016 BlackEnergy malware activity spiked in runup to Ukraine power grid takedown The Register Archived from the original on 27 December 2016 Retrieved 26 December 2016 Ukraine s power outage was a cyber attack Ukrenergo Reuters 18 January 2017 Archived from the original on 26 February 2021 Retrieved 25 February 2021 Ukraine reports cyber attack on government document management system ZDNet Archived from the original on 25 February 2021 Retrieved 25 February 2021 Ukraine says Russia hacked its document portal and planted malicious files 24 February 2021 Archived from the original on 25 February 2021 Retrieved 25 February 2021 Harding Luke Ukraine hit by massive cyber attack on government websites The Guardian Retrieved 14 January 2022 Lauren Feiner 23 February 2022 Cyberattack hits Ukrainian banks and government websites CBNC Archived from the original on 23 February 2022 Retrieved 23 February 2022 a b c Clayton Mark 17 June 2014 Ukraine election narrowly avoided wanton destruction from hackers The Christian Science Monitor Archived from the original on 13 October 2020 Retrieved 16 August 2017 Watkins Ali 14 August 2017 Obama team was warned in 2014 about Russian interference Politico Archived from the original on 6 October 2020 Retrieved 16 August 2017 Kramer Andrew E Higgins Andrew 16 August 2017 In Ukraine a Malware Expert Who Could Blow the Whistle on Russian Hacking The New York Times Archived from the original on 25 October 2020 Retrieved 16 August 2017 S Rosenberg EU referendum What does Russia gain from Brexit 26 June 2016 BBC News Archived 24 June 2018 at the Wayback Machine Highly probable that Russia interfered in Brexit referendum Labour MP says 13 December 2016 Independent Archived 13 December 2016 at the Wayback Machine J Kanter and A Bienkov Labour MPs think the government is hiding info about Russia interfering with Brexit 23 February 2016 Business Insider Archived 4 February 2021 at the Wayback Machine Syal Rajeev 12 April 2017 Brexit foreign states may have interfered in vote report says The Guardian Archived from the original on 1 October 2017 Retrieved 21 October 2017 Teffer Peter 12 April 2017 MPs and media create Brexit hacking scare EUobserver Archived from the original on 21 October 2017 Retrieved 21 October 2017 Nigel Farage is person of interest in FBI investigation into Trump and Russia Archived 2 June 2017 at the Wayback Machine 2 June 2017 Guardian MPs order Facebook to hand over evidence of Russian election meddling 24 October 2017 Telegraph Archived 16 December 2017 at the Wayback Machine UK and allies expose Russian intelligence services for cyber campaign of attempted political interference www ncsc gov uk Retrieved 7 December 2023 Kaplan Fred 20 March 2016 How the United States Learned to Cyber Sleuth The Untold Story POLITICO Magazine Retrieved 16 August 2022 New Evidence Links a 20 Year Old Hack on the US Government to a Modern Attack Group www vice com 4 April 2017 Retrieved 16 August 2022 Loeb Vernon 7 May 2001 NSA Adviser Says Cyber Assaults On Pentagon Persist With Few Clues Washington Post ISSN 0190 8286 Retrieved 16 August 2022 III William J Lynn 16 October 2020 Defending a New Domain ISSN 0015 7120 Retrieved 16 August 2022 Evan Perez Shimon Prokupecz 8 April 2015 How the U S thinks Russians hacked the White House CNN Archived from the original on 19 May 2019 Retrieved 17 December 2016 Russian hackers behind the damaging cyber intrusion of the State Department in recent months used that perch to penetrate sensitive parts of the White House computer system according to U S officials briefed on the investigation Evan Perez and Shimon Prokupecz 10 March 2015 Sources State Dept Hack the worst ever CNN Archived from the original on 1 February 2017 Retrieved 5 February 2017 Ignatius David 18 January 2017 Russia s radical new strategy for information warfare The Washington Post Archived from the original on 23 March 2017 Retrieved 22 March 2017 Thielman Sam Ackerman Spencer 29 July 2016 Cozy Bear and Fancy Bear did Russians hack Democratic party and if so why The Guardian Archived from the original on 15 December 2016 Retrieved 12 December 2016 Ackerman Spencer Thielman Sam 8 October 2016 US officially accuses Russia of hacking DNC and interfering with election Archived from the original on 7 October 2016 Retrieved 12 December 2016 Corera Gordon 22 December 2016 Can US election hack be traced to Russia BBC Archived from the original on 22 December 2016 Retrieved 23 December 2016 Gallagher Sean 12 December 2016 Did the Russians hack the election A look at the established facts arstechnica Archived from the original on 1 January 2017 Retrieved 23 December 2016 Savage David 18 December 2016 How much and what damage Senators call for a special committee to investigate Russian hacking Los Angeles Times Archived from the original on 19 December 2016 Retrieved 20 December 2016 Nakashima Ellen 22 December 2016 Cybersecurity firm finds evidence that Russian military unit was behind DNC hack The Washington Post Archived from the original on 9 September 2017 Retrieved 22 December 2016 Russian Government Cyber Activity Targeting Energy and Other Critical Infrastructure Sectors CISA us cert cisa gov 16 March 2018 Archived from the original on 21 October 2020 Retrieved 23 October 2020 Dlouhy Jennifer Riley Michael 15 March 2018 Russian Hackers Attacking U S Power Grid and Aviation FBI Warns Bloomberg Archived from the original on 23 July 2018 Retrieved 23 July 2018 a b How Not To Prevent a Cyberwar With Russia Wired 18 June 2019 Archived from the original on 23 June 2019 Retrieved 4 January 2021 Bertrand Natasha 17 December 2020 Nuclear weapons agency breached amid massive cyber onslaught POLITICO Archived from the original on 17 December 2020 Retrieved 18 December 2020 Nakashima Ellen 13 December 2020 Russian government spies are behind a broad hacking campaign that has breached U S agencies and a top cyber firm The Washington Post Archived from the original on 13 December 2020 Retrieved 13 December 2020 Hackers Tied to Russia s GRU Targeted the US Grid for Years Wired ISSN 1059 1028 Archived from the original on 2 March 2021 Retrieved 2 March 2021 Palmer Danny These four new hacking groups are targeting critical infrastructure warns security company ZDNet Archived from the original on 2 March 2021 Retrieved 2 March 2021 Colonial Pipeline hack explained Everything you need to know Retrieved 16 August 2022 FBI Statement on Compromise of Colonial Pipeline Networks Federal Bureau of Investigation Retrieved 16 August 2022 Gonzalez Gloria Lefebvre Ben Geller Eric 8 May 2021 Jugular of the U S fuel pipeline system shuts down after cyberattack Politico Archived from the original on 9 May 2021 The infiltration of a major fuel pipeline is the most significant successful attack on energy infrastructure we know of Recovery of Colonial Pipeline ransom funds highlights traceability of cryptocurrency experts say Thomson Reuters Institute 23 June 2021 Retrieved 16 August 2022 Runrunes es victima de ataques ciberneticos tras reportaje sobre las FAES in Spanish Tal Cual 27 May 2019 Archived from the original on 27 May 2019 Retrieved 27 May 2019 Eilperen Juliet amp Entous Adam 30 December 2016 Russian operation hacked a Vermont utility showing risk to U S electrical grid security officials say The Washington Post Archived from the original on 5 January 2017 Retrieved 31 December 2016 a href Template Cite news html title Template Cite news cite news a CS1 maint multiple names authors list link Eilperin Juliet Entous Adam 31 December 2016 Russian operation hacked a Vermont utility showing risk to U S electrical grid security officials say The Washington Post Archived from the original on 7 January 2018 Retrieved 16 January 2018 Further reading editBowen A S 4 January 2021 Russian Cyber Units Congressional Research Service Ackerman S and Thielman S 8 October 2016 US Officially Accuses Russia of Hacking DNC and Interfering with Election The Guardian Halpern Sue The Drums of Cyberwar review of Andy Greenberg Sandworm A New Era of Cyberwar and the Hunt for the Kremlin s Most Dangerous Hackers Doubleday 2019 348 pp The New York Review of Books vol LXVI no 20 19 December 2019 pp 14 16 20 Retrieved from https en wikipedia org w index php title Cyberwarfare by Russia amp oldid 1221223202, wikipedia, wiki, book, books, library,

article

, read, download, free, free download, mp3, video, mp4, 3gp, jpg, jpeg, gif, png, picture, music, song, movie, book, game, games.