Search This Blog
Powered by Blogger.

Blog Archive

Labels

Load More
Trendy Right Now

Popular Posts

Showing posts with label Military Intelligence. Show all posts
MTC
Artificial Intelligence Cyber Attacks CyberCrime Cyberhackers Cybernetworks Cybersecurity CyberThreat Hacktivists Military Intelligence MTC

Ukrainian Hackers Launch Coordinated Cyber Offensive on Russian Networks

 



Ukrainian military intelligence agents operated a mass cyberattack on Russian Internet providers on August 24 that disrupted the online platforms of dozens of industrial facilities in Russia, according to a source with the Kyiv Independent, who was authorized to speak on the matter. During the recent cyber attack, there were at least 33 servers and 283 computers in offices at industrial facilities that were affected, 21 websites that have been taken offline and 15 cloud-based storages that have been destroyed. An online source has reported that the Ukrainian hackers have also left pro-Ukrainian messages on the affected platforms. 

Users in Russia have complained that they have had issues with Rostelecom, one of the world's largest digital service providers, and they have described poor Internet connections at MTC and Beeline, as well as Yandex, an international technology company and its services. A Russian source told the newspaper that platforms hit by cyberattacks in the past support and finance Russia's war against Ukraine. 

According to the Telegram messaging app published by Solntsepyok, a group of activist hackers and "hacktivists" who exercised control at Kyivstar, launched the cyberattack and published screenshots that appear to support their claim that they had accessed the network. In the past few months, Russia has denied being responsible for such cyberattacks on several occasions. According to a statement released by Ukraine's State Service of Special Communications and Information Protection (SSSCIP), this incident is being investigated along with the domestic intelligence agency SBU, which is responsible for spreading intelligence across the country. 

It is also believed that many industrial facilities, which support the Russian military-industrial complex, were attacked, as well as dozens of services belonging to the facilities. Hackers from Ukraine have been targeting the network infrastructure of factories and companies that produce equipment for Russian law enforcement agencies, aircraft, and helicopter components, as well as other hardware and software used in producing those products, such as servers and processors. Several Russian Internet providers, including Mail.ru, one of the most used and most popular Russian portals, have been attacked, putting their cloud and file storage services at risk. 

This attack affected at least two dozen websites owned by companies whose products include lighting equipment and diesel power plants as well as hosting providers and ballistic protection products. In 2022, the Russian invasion of Ukraine on a full scale began, and since then, Ukrainian hackers have regularly attacked Russian online platforms. There was a large-scale cyberattack that took place in late June, which caused at least 250,000 consumers to lose access to the internet in Crimea and other Russian-controlled territories, according to a military intelligence source quoted in the Kyiv Independent. 

In the June attack, the impacted infrastructure was shared by consumer networks and operators of the occupied territories that used the impacted infrastructure. According to the HUR report, Russian providers called it "the most powerful DDoS attack they had ever experienced to date". In July of this year, the Ukrainian military intelligence agency conducted a cyberattack against the Russian banking system, striking several top banks in the process. The attack was caused by the freezing of the Russian banks, so users of the Russian banks were not able to withdraw cash, and when they tried to use an ATM, they were blocked immediately from using their debit or credit cards.
Read more »
Sensitive data
Advanced Technology Data Breach Israel-Palestine tensions Israeli spyware Malicious actor Middle East Military Intelligence Sensitive data

Israel's Intelligence Failure: Balancing Technology and Cybersecurity Challenges

On October 7, in a startling turn of events, Hamas carried out a planned invasion that escaped Israeli military detection, posing a serious intelligence failure risk to Israel. The event brought to light Israel's vulnerabilities in its cybersecurity infrastructure as well as its over-reliance on technology for intelligence gathering.

The reliance on technology has been a cornerstone of Israel's intelligence operations, but as highlighted in reports from Al Jazeera, the very dependence might have been a contributing factor to the October 7 intelligence breakdown. The use of advanced surveillance systems, drones, and other tech-based solutions, while offering sophisticated capabilities, also poses inherent risks.

Experts suggest that an excessive focus on technological solutions might lead to a neglect of traditional intelligence methods. As Dr. Yasmine Farouk from the Middle East Institute points out, "In the pursuit of cutting-edge technology, there's a danger of neglecting the human intelligence element, which is often more adaptive and insightful."

The NPR investigation emphasizes that cybersecurity played a pivotal role in the intelligence failure. The attackers exploited vulnerabilities in Israel's cyber defenses, allowing them to operate discreetly and avoid detection. The report quotes cybersecurity analyst Rachel Levy, who states, "The attackers used sophisticated methods to manipulate data and deceive the surveillance systems, exposing a critical weakness in Israel's cyber infrastructure."

The incident underscored the need for a comprehensive reassessment of intelligence strategies, incorporating a balanced approach that combines cutting-edge technology with robust cybersecurity measures.

Israel is reassessing its dependence on tech-centric solutions in the wake of the intelligence disaster. Speaking about the need for a thorough assessment, Prime Minister Benjamin Netanyahu said, "We must learn from this incident and recalibrate our intelligence apparatus to address the evolving challenges, especially in the realm of cybersecurity."

The October 7 intelligence failure is a sobering reminder that an all-encompassing and flexible approach to intelligence is essential in this age of lightning-fast technological innovation. Finding the ideal balance between technology and human intelligence, along with strong cybersecurity measures, becomes crucial as governments struggle with changing security threats. This will help to avoid similar mistakes in the future.



Read more »
Threat actors
Artificial Intelligence Cyber Defence Cyber Security Cyberspace Global Economy International Cooperation Malicious actor Military Intelligence Threat actors

Cyber Militarization: Navigating the Digital Battlefield

Technology and the internet are now ubiquitous, creating vulnerabilities and enabling the militarization of cyberspace. This trend poses a number of threats to global security, including accidental or deliberate conflict between states, empowerment of non-state actors, and new arms races. The international community must cooperate to address this issue, developing norms and rules, building trust, and investing in cybersecurity.

Cyberspace once considered a relatively neutral domain for communication and information sharing, is now increasingly becoming a battlefield where nation-states vie for power and influence. The articles linked in this discussion shed light on the complex issue of militarization in cyberspace.

Kaspersky, a leading cybersecurity company, delves into the subject in their blog post, "How to Deal with Militarizing Cyberspace." They emphasize the growing concerns about the use of cyberspace for military purposes, such as cyberattacks and espionage. This article emphasizes the need for international cooperation and cybersecurity measures to address the challenges posed by this evolving landscape.

In the blog post from EasyTech4All, titled "The Inevitability of Militarization of CyberAI," the focus is on the convergence of artificial intelligence and cyber warfare. It highlights the significant role AI plays in enhancing military capabilities in cyberspace. This shift underlines the need for discussions and regulations to govern the use of AI in military operations.

Additionally, the document from the Cooperative Cyber Defence Centre of Excellence (CCDCOE) titled "The Militarization Of Cyberspace" offers an in-depth examination of the historical context and evolution of militarization in cyberspace. It explores the various facets of this phenomenon, from the development of offensive cyber capabilities to the establishment of cyber commands in military structures.

The militarization of cyberspace raises critical questions about the use of cyber tools for aggressive purposes, the potential for escalation, and the importance of international agreements to prevent cyber warfare. The interconnectedness of the global economy and critical infrastructure further amplifies the risks associated with cyber warfare.

To address these challenges, a multi-faceted approach is essential. This includes the development of international norms and regulations governing cyber warfare, cooperation between nations, investment in cybersecurity, and continuous monitoring of cyber threats.

Cyberspace militarization is a complex and evolving issue that requires our attention. By exploring the articles and materials provided, we gain a glimpse into the many facets of this challenge, from its historical roots to the use of AI in warfare. As technology advances, it becomes increasingly important to use cyberspace in an ethical and responsible manner. It is up to us all to ensure that the digital realm remains a force for good and progress, rather than a catalyst for instability and conflict.

Read more »
User Privacy
Cyber Laws Data Breach Financial Fraud Mexican government Military Intelligence User Privacy

Major Security Breach Hits the Mexican Government

 


According to the president of Mexico, a group of hackers stole a sizable chunk of emails from the Mexican Defense Department as well as those from police and military organizations in other Latin American nations.

Lopez Obrador, often known as AMLO, has dismissed worries about the growing militarization of public security, claiming that in order to avoid corruption, the guard must now be under military direction. Speaking at a  press conference, the president verified allegations about his own health issues and confirmed that the information from the Defense Ministry hack that had been reported in local media overnight was accurate.

Media reports claim that the hacker gained access to six terabytes of material from the Defense Ministry, including transcripts of communications, details about criminal characters, and surveillance of Ken Salazar, the American ambassador to Mexico.

The hack was minimized by López Obrador, who claimed that "nothing is uncertain." He claimed that the attack appeared to have happened during a system change at the Defense Department.

However, Chile was so concerned about the intrusion into its own systems that last week, while being in the United States with President Gabriel Boric for the UN General Assembly, it called the defense minister back.

Emails from the militaries of El Salvador, Peru, Colombia, and the National Police of El Salvador are also included in the 10 gigabytes of data that the organization has taken. The majority of the data seemed to come from Mexico.

Anonymous social justice activists going by the name Guacamaya claim to employ hacking to expose wrongdoing and corruption on behalf of Indigenous people. The emails of a mining corporation long suspected of violating human rights and the environment in Guatemala were previously breached and made public by hackers with the same identity.

The group lamented the colonists' pillage of Latin America, which it refers to as Abya Yala, in a statement that accompanied the most recent action, as well as the 'Global North's ' ongoing extractivist objectives.

Data theft method

In a statement, the hacking group said that governments in Latin American nations utilize their militaries and police forces to 'hold their inhabitant's prisoners,' frequently after receiving intensive training from the United States. Although the group promised to make the records available to journalists, so far only a small portion has been publicized, possibly due to the overwhelming amount of material.

The hackers claimed in an email exchange that their analysis of the Mexico emails up to that point revealed that a lot of the information had been widely known and that they didn't believe there were any destructive emails, potentially because more private exchanges were better secured. However, they claimed there was proof the military was paying close attention to political and social movements.

In addition to the Zapatista rebel movement, which managed an uprising in southern Mexico in 1994, and groups contrary to López Obrador's current effort to build a tourist train around the Yucatan Peninsula, they claimed that those included relatives of 43 students who were kidnapped by local police and allegedly given over to be killed by a drug gang in 2014.

Guacamaya appears to be more of a 'hacktivist' hack-and-leak operation with social justice objectives rather than a cyberattack targeting government information systems for financial gain or extortion.

The details of the leak were first revealed by Mexican journalist and well-known government critic Carlos Loret, who claimed that the data collected from the ministry demonstrated the extent of the military's power under Lopez Obrador, who has given the military responsibility for everything from infrastructure development to customs supervision.

In spite of criticism of alleged military abuses and worries that the government is militarizing public security, lawmakers adopted legislation this month expanding the role of the armed forces in combating crime.




Read more »
Spies
Chinese Cyber Security Czech EU Military Intelligence Russian Spies

Czech Republic's Intelligence Agency Reveal on Russian And Chinese Spies Posing an Imminent Threat to The EU Member's Security

 


The Czech Republic's intelligence agency recently revealed that Russian and Chinese spies posed an up and coming threat to the EU member's security and other key interests the previous year. 

The annual report of the Security Data Administration (BIS) said the intelligence services of Russia and China took up a rather significant role in further advancing their interests and options abroad.

All Russian intelligence services were rather active on Czech territory in 2019. Spies with a strategic and diplomatic cover zeroed in on further advancing Russia's interests and the Kremlin's views, just as boosting Russia's reputation in the Czech Republic. 

"The key difference is that Russia seeks to destabilise and disintegrate its opponents, while China is trying to build a Sinocentric global community wherein other nations acknowledge the legitimacy of China's interests," BIS said. 

The Chinese spies’ agents utilized covers as diplomats, journalists, or scientists and "utilized the receptiveness of the Czech environment to the offer of Chinese investment," BIS said. 

They focused on the tech area, the military, security, infrastructure, the health sector, the economy, and environmental protection and searched for ways to paint a positive portrait of China. 

BIS added that the foreign spies additionally focused on Czech cyberspace with attacks focused on the foreign ministry and diplomatic missions abroad, yet additionally the infrastructure of Czech anti-virus software maker Avast.

It said Russian and Chinese services were behind these attacks, adding that phishing and spear-phishing emails were the most frequently utilized tactic.
Read more »
Russia
COVID-19 Cyber Security Japan Military Intelligence Olympics Russia

UK National Cyber Security Centre Reveals Russia’s Plan to Disrupt Tokyo Olympics

 

The UK National Cyber Security Centre recently revealed that in an attempt to completely disrupt the 'world's premier sporting event' the Russian military intelligence services were coming up with a cyber-attack on the Japanese-facilitated Olympics and Paralympics in Tokyo. 

The Russian cyber-reconnaissance work covered the Games organizers, logistics services, and sponsors and was in progress before the Olympics was delayed due to Covid-19. 

The proof is the first indication that Russia was set up to venture as far as to disrupt the summer Games, from which all Russian competitors had been prohibited on account of diligent state-sponsored doping offenses. 

The Kyodo news agency said a senior Japanese government official had specified that Tokyo would think about housing a protest with Moscow if cyber-attacks were affirmed to have been carried out by Russia. 

Japan's chief government spokesman, Katsunobu Kato, said the country would do all that is conceivable to guarantee that the postponed Games would be liberated from any and every cyber-attacks. 

“We would not be able to overlook an ill-intentioned cyber-attack that could undermine the foundation of democracy,” Kato stated, including that Japanese authorities were gathering data and would keep on imparting it to other countries. 

The UK government announced with what it reported with 95% certainty that the disruption of both the winter and summer Olympics was carried out distantly by the GRU unit 74455. 

In PyeongChang as well, as indicated by the UK, the GRU's cyber unit endeavored to camouflage itself as North Korean and Chinese hackers when it focused on the opening ceremony of the 2018 winter Games, smashing the site to stop spectators from printing out tickets and crashing the WiFi in the arena. 

The key targets additionally included broadcasters, a ski resort, Olympic officials, services providers, and sponsors of the games in 2018, which means the objects of the attacks were not simply in Korea.

The foreign secretary, Dominic Raab, stated: “The GRU’s actions against the Olympic and Paralympic Games are cynical and reckless. We condemn them in the strongest possible terms.” 

Included later that, “the UK will continue to work with our allies to call out and counter future malicious cyber-attacks.” 

These allegations of the UK are believed to be a part of an endeavor to disrupt Russia's cybersecurity threat through maximum exposure and stop any interruption of a rescheduled summer Games next year.

Read more »
Russia
cyber attack Hackers Military Intelligence Russia

Russia A Suspect of Norwegian Parliament Cyber Attack?

 

In September, Norwegian authorities said that email accounts of a few authorities had been undermined during a cyber-attack, and some data had been downloaded. In any case, the full extent of the harm brought about by the hack was not yet not revealed. 

Now the nation outrightly blames Russia for this cyber-attack on the email system in the Norwegian parliament. 

Earlier this year in a report, Norway's military intelligence agency had already warned that Russia was attempting to cause more friction in the nation through purported influence operations, aimed toward debilitating public trust in the government, election process as well as the media. 

National legislatures are a 'key source’ of policy-related data, as are oftentimes targeted by hacking campaigns. In August, Norway ousted a Russian diplomat on suspicion of spying. Russia fought back similarly by removing a Norwegian diplomat just days later. 

Foreign Minister Ine Eriksen Soreide took it a serious occurrence influencing the nation's "most important democratic institution” “Based on the information available to the government it is our assessment that Russia stood behind this activity" she said without giving any evidence. Although Moscow rejected the claim, calling it a "serious and wilful provocation." 

Ms. Soreide of course said in a statement that Norway's security and intelligence services were "co-operating closely to deal with this matter at the national level." Because of it, Russia's embassy in Oslo hit back at the "unacceptable" declaration, saying no proof had been introduced. 

However, when we look at things from Norway’s perspective, it is very clear as to to to why they did what they did. The evidence of which lies in the past events that involved both the countries. 

One being when Norway had arrested a Russian national in 2018 who was said to have been suspected of gathering information on the country's parliamentary network. 

Although the individual was later released due to an of. Likewise, in January this year, the personal details of several German politicians, including Chancellor Angela Merkel, were stolen and published online. 

And just the previous year, Australia's cyber intelligence agency accused China after hackers had attempted to break into the Australian parliament, something which the Chinese authorities had denied.

Read more »
Military Intelligence
Data Breach Facebook ISI Military Intelligence

BrahMos Engineer Arrested on Charges of Spying for Pakistan’s Intelligence Agency ISI





Nishant Agrawal, an engineer from the BrahMos Aerospace Private Limited in Nagpur was arrested in a joint operation by the Military Intelligence and the Uttar Pradesh and Maharashtra police, following a tip.

Arrested on Monday on charges of spying for Pakistan's intelligence agency ISI and various other countries, Nishant was accused of passing on classified and secret information to the Inter-Services Intelligence of Pakistan in addition to other countries as well. Experts, in any state, clarified that he worked at the integration facility and were uncertain whether he had access to any classified information or not.

Nonetheless he will be charged under the Official Secrets Act, following which his home and office computers have already been seized. The police are still investigating whether he was "honey-trapped" by Facebook IDs in the name of women, which have been traced to Pakistan.

"Very sensitive information was found on his personal computer. We found evidence of him chatting on Facebook with Pakistan-based IDs," said Aseem Arun, the chief of the anti-terror squad of Uttar Pradesh.

Nishant has worked in the technical research section of the missile centre for four years, studied at the National Institute of Technology in Kurukshetra, and was also a gold medallist, described as a very bright engineer.

Presently there are two other scientists working in a Defence Research and Development Organisation (DRDO) lab in Kanpur who are being monitored for more suspicious activity and the situation is being monitored as this is occurrence is the first spy scandal to hit the Brahmos Aerospace, considered the world's fastest cruise missile.


Read more »
Subscribe to: Posts (Atom)