Nation State Hacking Has A Big Commercial Impact

Uploaded on 2017-02-21 in TECHNOLOGY--Hackers, NEWS-Cybersecurity News, GOVERNMENT-National, FREE TO VIEW

What impact does the long standing practice of State sponsored hacking to steal secrets and influence elections have on the business world?

It seems that cyber-espionage is on everyone’s mind these days. Fierce allegations are being made by US officials, claiming that Russian hackers interfered with the US election process. One of President Obama’s last act in office was to issue sanctions against alleged Russian hacking. But is this really surprising?

Nation states have been spying on one another since biblical times, the only thing that’s really changed are their methods. Instead of sending spies to infiltrate high ranks of political parties, nations can now utilise even more subtle, and less risky methods to achieve an even greater political and diplomatic impact.

In fact, America is certainly not alone; it is known that the NSA wiretapped Greek officials prior to, and during, the 2004 Athens Olympics.

‘The Athens Affair’, however, was over a decade ago. Today, the process is much simpler. Instead of hacking telephone networks, wiretapping, recording, and processing thousands of hours of calls, one simply has to hack a single email server to gain access to millions of emails and documents, all ready and waiting to be leaked at the right moment. For instance, with the goal of tarnishing a political candidate’s reputation.

Impact on the Enterprise

The question remains: what does this have to do with the business world? Well, due to the peculiar nature of cyberspace, the lines between nation states, hacking groups, hacktivists and cyber criminals are blurred. Russia makes extensive use of “patriotic” (read: nation state sponsored) hacking groups, as does China and Iran.

These “Blackhats” hackers are sent to do their nation’s dirty work. They operate with guidance and are backed by substantial resources, all with plausible deniability of the regime that employs them. However, because the lines are so blurred, hackers will often use the information they find, or the tools they possess, for personal gain. The methods that they perfect to hack and steal sensitive information from other nations can be used by them, the next day, to hack corporations.

Data Dumps

Hackers use data dumps to scourge and identify information which they can then utilize to hack organisations. In the process they may find information which could be used to hack corporations, which they will gladly use or resell. We’ve written in the past about the danger emanating from data dumps and password reuse  and it is advised that enterprises enforce policies preventing password re-use and monitor dump sites regularly to identify information leakage.

Playing the Supply Chain

In more sophisticated cyber-espionage operations, hackers retreat down the supply chain and try to hack the weakest link. For example, it is difficult to hack the US Department of Defence networks, in order to gain intelligence about the next generation of aircrafts the US is building.

It is far easier to hack the defence contractor who manufactures these aircrafts, simply because such companies employ thousands of smaller, less protected vendors who provide them with just about anything, from toilet paper and stationery, to aircraft-specific toilets, to missile casings. These vendors are still connected to the defence contractor’s ERP system, and communicate with it directly, creating a huge vulnerability.     

Meet CyberZeist

CyberZeist is “a Political & Offensive Black-Hat hacker.” He is a former member of the UGNazi hacking group, from which various members were arrested for hacking and credit card fraud. CyberZeist has been active for many years, and embodies the duplicity of hacktivists today. While he mainly focuses his efforts on political goals, such as human rights, he occasionally (or during the process of) hacks “regular” commercial enterprises.

In 2012, CyberZeist hacked the security services company G4S, and published a document that allegedly revealed human rights violations (for more information see the following link). He also leaked a few hundred login credentials that he allegedly obtained by launching a spear phishing attack on US federal employees.

Most, recently he uncovered the passwords to dozens of senators’ email addresses, as well as social security numbers and credit card information for senior members of the Democratic party, including Vice President Joe Biden, Senate Minority Leader Harry Reid, House Minority Leader Nancy Pelosi and acting Chair of the DNC Donna Brazile. The information was posted to Pastebin. On December 22, 2016, he even hacked the FBI website and leaked the data on Pastebin.

ITInsights

State-sponsored Cyberspies:          Cyberspies Impersonate Security Researcher:

State Sponsored Hackers: Finding  The Country Behind The Attack:

 

« Is There A Truly Secure Messaging App?
Indian Police Training To Crackdown On Electronic Fraud »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Panda Security

Panda Security

Panda Security specializes in the development of endpoint security products and is part of the WatchGuard portfolio of IT security solutions.

WireX Systems

WireX Systems

WireX is an innovative network intelligence and forensics company that is changing the way businesses resolve cyber-attacks.

Shape Security

Shape Security

Shape Security provide best-in-class defense against malicious automated cyberattacks on web and mobile applications.

Lynx Technology Partners

Lynx Technology Partners

Lynx Technology Partners is a full service, full life-cycle risk-based security consulting firm.

LTIMindtree

LTIMindtree

LTIMindtree is a new kind of technology consulting firm. We help businesses transform – from core to experience – to thrive in the marketplace of the future.

Technisanct

Technisanct

Technisanct works with Governments, especially Law Enforcement and Defence agencies, helping them in monitoring threats, managing their data and resolving their forensic needs.

Hybrid Identity Protection Conference (HIP)

Hybrid Identity Protection Conference (HIP)

Hybrid Identity Protection (HIP) is the premier educational forum for identity-centric cybersecurity practitioners charged with defending hybrid cloud environments.

DigitalWell

DigitalWell

DigitalWell provide fully managed IT and communications solutions for a truly innovative end-to-end experience - for your customers and teams.

Cloudsec Asia

Cloudsec Asia

Cloudsec Asia is Thailand's top-ranked cybersecurity consultant company. We offers security services to ensure that all your IT assets are reliable, accessible, and secure.

Gorilla Technology Group

Gorilla Technology Group

Gorilla specializes in video analytics, OT network security and big data to support a wide range of solutions for commercial, industrial, cities and government purposes.

Skyhigh Security

Skyhigh Security

Skyhigh Security enables your remote workforce while addressing your cloud, web, data, and network security needs.

Closed Door Security

Closed Door Security

Closed Door Security is the only cybersecurity team in the north of Scotland offering everything from IASME Certification to CREST-Accredited penetration testing.

Smarsh

Smarsh

Smarsh products are designed for user-friendly, efficient compliance. From archiving, supervision, and discovery to cybersecurity – Smarsh has you covered.

Strobes Security

Strobes Security

Strobes is among the world’s first cybersecurity platforms specifically designed for end-to-end continuous threat exposure management.

Datos Insights

Datos Insights

Datos Insights is a leading global provider of insights, data, and advisory services to the financial services, insurance, and retail technology industries.

Invariant Labs

Invariant Labs

Invariant Labs are a team of technical experts with broad experience ranging from academia to big tech on a mission to unlock the potential of AI systems by making them robust, reliable and secure.