WASHINGTON -- Hackers moving for Russian quality attacked an American engineering institution this fall, investigators astatine a U.S. cybersecurity institution said Tuesday — seemingly due to the fact that that steadfast had worked for a U.S. municipality with a sister metropolis successful Ukraine.
The findings bespeak the evolving tools and tactics of Russia's cyber warfare and show Moscow's willingness to onslaught a increasing database of targets, including governments, organizations and backstage companies that person supported Ukraine, adjacent successful a tenuous way.
Arctic Wolf, the U.S. cybersecurity steadfast that identified the Russian campaign, wouldn't place its lawsuit oregon the metropolis it worked with to support their security, but said the institution had nary nonstop transportation to Russia's penetration of Ukraine. However, the radical down the attack, known to cybersecurity experts arsenic RomCom, has consistently targeted groups with links to Ukraine and its defence against Russia.
“They routinely spell aft organizations that enactment Ukrainian institutions directly, supply services to Ukrainian municipalities, and assistance organizations tied to Ukrainian civilian society, defense, oregon authorities functions,” said Ismael Valenzuela, Arctic Wolf's vice president of labs, menace probe and intelligence.
The onslaught connected the engineering steadfast was identified by Arctic Wolf successful September earlier it could disrupt the engineering company's operations oregon dispersed further.
A connection near with officials astatine the Russian Embassy successful Washington seeking remark was not instantly returned.
Many towns and cities astir the satellite bask sister-city relationships with different communities, utilizing the programme to connection societal and economical exchanges. Several U.S. cities, including Chicago, Baltimore, Albany, N.Y. and Cincinnati, person sister-city relationships with communities successful Ukraine.
The run successful September came conscionable a fewer weeks aft the FBI warned that hackers linked to Russia were seeking to interruption into U.S. networks arsenic a mode to burrow into important systems oregon disrupt captious infrastructure. According to the latest bulletin from the U.S. Cybersecurity and Infrastructure Security Agency, the Russia-aligned hackers person aggregate motives: disrupting assistance and subject supplies to Ukraine, punishing businesses with ties to Ukraine, oregon stealing subject oregon method secrets.
Last month, the Digital Security Lab of Ukraine and investigators astatine SentinelOne, a U.S. cybersecurity firm, exposed a speedy and sprawling cyberattack connected alleviation groups supporting Ukraine, including the International Red Cross and UNICEF. That hacking run utilized fake emails impersonating Ukrainian officials that sought to fool users into infecting their ain computers by clicking connected malicious links.
The investigators astatine SentinelOne stopped abbreviated of attributing the onslaught to the Russian authorities but noted that the cognition targeted groups moving connected Ukrainian assistance and required six months to plan. The “highly susceptible adversary” down the campaign, the investigators determined, is “an relation well-versed successful some violative tradecraft and antiaircraft detection evasion.”
English (CA) · 
English (US) · 
Spanish (MX) ·