Left Menu
Development News Edition

Hacking the hackers: Russian group hijacked Iranian spying operation, officials say


Hacking the hackers: Russian group hijacked Iranian spying operation, officials say
Image Credit: IANS

Russian hackers piggy-backed on an Iranian cyber-espionage operation to attack government and industry organizations in dozens of countries while masquerading as attackers from the Islamic Republic, British and U.S. officials said on Monday.

The Russian group, known as "Turla" and accused by Estonian and Czech authorities of operating on behalf of Russia's FSB security service, has used Iranian tools and computer infrastructure to successfully hack into organizations in at least 20 different countries over the last 18 months, British security officials said. The hacking campaign, the extent of which has not been previously revealed, was most active in the Middle East but also targeted organizations in Britain, they said.

Paul Chichester, a senior official at Britain's GCHQ intelligence agency, said the operation shows state-backed hackers are working in a "very crowded space" and developing new attacks and methods to better cover their tracks. In a statement accompanying a joint advisory with the U.S. National Security Agency (NSA), GCHQ's National Cyber Security Centre said it wanted to raise industry awareness about the activity and make attacks more difficult for its adversaries.

"We want to send a clear message that even when cyber actors seek to mask their identity, our capabilities will ultimately identify them," said Chichester, who serves as the NCSC's director of operations. Officials in Russia and Iran did not immediately respond to requests for comment sent on Sunday. Moscow and Tehran have both repeatedly denied Western allegations over hacking.

GLOBAL HACKING CAMPAIGNS

Western officials rank Russia and Iran as two of the most dangerous threats in cyberspace, alongside China and North Korea, with both governments accused of conducting hacking operations against countries around the world.

Intelligence officials said there was no evidence of collusion between Turla and its Iranian victim, a hacking group known as "APT34" which cybersecurity researchers at firms including FireEye https://www.fireeye.com/current-threats/apt-groups.html say works for the Iranian government. Rather, the Russian hackers infiltrated the Iranian group's infrastructure in order to "masquerade as an adversary which victims would expect to target them," said GCHQ's Chichester.

Turla's actions show the dangers of wrongly attributing cyberattacks, British officials said, but added that they were not aware of any public incidents that had been incorrectly blamed on Iran as a result of the Russian operation. The United States and its Western allies have also used foreign cyberattacks to facilitate their own spying operations, a practice referred to as "fourth party collection," according to documents released by former U.S. intelligence contractor Edward Snowden and reporting https://www.spiegel.de/international/world/new-snowden-docs-indicate-scope-of-nsa-preparations-for-cyber-battle-a-1013409-2.html by German magazine Der Spiegel.

GCHQ declined to comment on Western operations. By gaining access to the Iranian infrastructure, Turla was able to use APT34's "command and control" systems to deploy its own malicious code, GCHQ and the NSA said in a public advisory.

The Russian group was also able to access the networks of existing APT34 victims and even access the code needed to build its own "Iranian" hacking tools.

Also Read: Teleperformance Group Celebrates One Year Anniversary of Strategic Acquisition

(This story has not been edited by Devdiscourse staff and is auto-generated from a syndicated feed.)


TRENDING

OPINION/BLOG/INTERVIEW

JNU Administration's 100-meter challenge before JNUSU

For the first time in its history, Jawaharlal Nehru University JNU Administration is seeking permanent deployment of local police to keep protesting students at 100 meters away from the Administrative Block. It would be interesting to see h...

Sentiment Analysis of Twitter users during COP25: Governments losing trust on Climate Action

Sentiment analysis of Twitter users during COP25 in Madrid, being held from December 2-13, shows widespread fear on climate change due to global warming but almost no trust on governments in meeting the emission targets. In the analysis the...

These innovators are making humanitarian response more efficient

These alarming trends prompt a call for the world to not only address the ongoing crisis but also to adopt innovative approaches to fulfill the growing humanitarian needs in such emergencies. ...

Hyderabad Encounter: A sentiment analysis of public mood on day of encounter

Sentiment analysis of twitter users revealed that they showered salutes on Hyderabad police for eliminating alleged gang rapists of the veterinary doctor but only a few believe in cops version of successive events leading to encounter....

Videos

Latest News

'Brexit election' raises hopes and fears in Northern Ireland

Belfast, Dec 14 AFP Prime Minister Boris Johnsons crushing election victory gives Britain a chance to move past years of gridlock over Brexit -- especially in Northern Ireland, where social and political divides run deep. Were leaving limbo...

Poland's main opposition picks moderate veteran for presidential vote

Polands main opposition group, the centre-right Civic Platform PO, picked a party veteran known for building consensus on Saturday as its contender to unseat nationalist ally Andrzej Duda in a presidential election next year.A former parlia...

Farooq Abdullah's detention extended by 3 months

The detention of Farooq Abdullah, a three-term chief minister of erstwhile state of Jammu and Kashmir, was extended on Saturday by three months and he would continue to remain at his residence that has been declared a sub-jail, officials sa...

Protests against amended Citizenship Act continues in NE, WB

Protests against amended Citizenship Act continues in NE, WB Eds Combining related stories GuwahatiShillongKohimaKolkata, Dec 14 PTI Protests against the amended Citizenship Act continued on Saturday in West Bengal and in the North East, w...

Give Feedback