Moscow [Russia], June 12 (ANI): Chinese hackers reportedly used their own malicious software to hack Russian government websites in an attempt to steal sensitive government data.
This report was released by the US company SentinelOne. It is based on a report released last month by the Federal Security Service (FSB), one of Russia’s leading espionage agencies, and the cyber unit of telecommunications company Rostelecom.
The report points out how a hacker group called ThunderCats (related to China) hacked the website of a Russian government agency.
Experts from the U.S. company SentinelOne said the malicious code used to break into Russian federal executives resembled a hacking tool associated with a wide set of Chinese spy suspects that the Asian government has also targeted in recent years. Said that. Cyber security.
Experts have come to the conclusion that Chinese hackers have developed their own malicious software (malware) called Mail-O. In fact, it’s a downloader program that looks like the legitimate utility of Mail.ru GroupDisk-O. According to experts, cyber villains acted in the interests of foreign nations (which are unspecified, but hints of a heavenly empire).
These attacks on Russia are referred to in the report as “unprecedented.”
“After breaking into a local network, attackers have traditionally taken steps aimed at completely endangering the infrastructure and stealing sensitive government data,” the report said. Foreign interests “.
Today’s cyberattacks are unique and are rated by experts as a federal threat. The person who did it used the latest software.
The criminal’s secret level was on the verge of illusion. As experts explain, it was achieved thanks to an understanding of undetectable malware, legitimate utilities, and the internal logic of information security tools used by authorities.
In addition, criminals used several types of attacks simultaneously, including phishing, exploiting web vulnerabilities, and attacks through contractors. And finally, the Russian resource infrastructure (Yandex and Mail.ru Group cloud) was used for Russia.
Obviously, hackers were involved in the fifth highest level to do this. This suggests the conclusion that we are talking about a lot of money. It is a nation, not an individual or a group of individuals.
Citing a report from cybersecurity firm Recorded Future, news service CyberWire has already banned the use of foreign antivirus products because of security risks, so this purchase is for scanners. Said it was done below.
SentinelOne’s findings show a reality that is often overlooked in US-centric cybersecurity debates. The Russian and Chinese governments are engaged in many cyber-spying activities with each other.
For example, last year, US officials publicly exposed allegations of a Chinese hacking campaign targeting entities in Russia and other former Soviet republics.
“The idea that China will target the Russian government [and vice versa] Researcher Juan Andres Guerrero Sade said in an email. Relations between China and Russia are complex and involve hot button issues such as border sharing, diplomatic and economic interests. The rise of the FSB after the collapse of the Soviet Union stated that the FSB’s report appears to be an effort to portray Russian organizations as facing the same threats as other organizations.
“It’s as if we’re all facing the same enemy, so let’s fight together,” Soldatov added.