Russia Accused Of Cyber Attack On Norway

Russia has been accused of carrying out a "significant" cyber-attack on the Norwegian parliament in August. In this attack/hack, unauthorised individuals got access to the email accounts of several elected members of the Storting, Norway's single-chamber parliament.

The cyber criminals also hacked into accounts belonging to the parliament’s employees. An unspecified amount of data was stolen and this has members of Norway's main opposition party.

Norway's foreign minister, Ine Eriksen Soereide, told reporters that the attack was created by Russia and she said it is very a serious incident affecting the country's "most important democratic institution.....This is a serious event that hit our most important democratic institution.... Based on the information available to the government, it is our assessment that Russia stood behind this activity."” said Soereide.

Soereide did not give details of any action that Norway might take against its neighbor. A Norwegian foreign ministry spokeswoman declined to comment when asked whether Russia would be asked to recall its ambassador or any of its diplomats from Norway. 

Moscow has rejected Norway's claim, calling it a ‘serious and willful provocation.’ In addition, the Russian embassy referred to the fact that Russia does not blame the authorities of other countries in such cases, despite the fact that millions of cyber-attacks are annually committed on Russian state Internet resources from abroad, including from foreign missions in Norway.

These sort of events go back also to September 2018 when a Russian IT adviser named Mikhail Bochkaryov was arrested at Oslo Airport after exhibiting strange behavior at an IT conference held in Norway's parliament.  Bochkaryov, an employee of the Russian parliament's upper chamber, had been attending a seminar organised by the European Centre for Parliamentary Research and Documentation on the Storting's digitalisation process. 

Norway’s Police Security Service (PST) said the IT professional had been detained on suspicion of illegal intelligence activities and later released with charge.

  • In 2017, Norway accused APT 29 of carrying out spear-phishing attacks on Norway’s foreign ministry, army, and other institutions. Arne Christian Haugstoyl, an official with PST, said that the group, which has "links to the Russian authorities," had targeted nine different email accounts.  
  • In 2018, NATO member Norway arrested a Russian national suspected of gathering information on the parliament's internet network, but released him several weeks later due to lack of evidence.

The two countries, which share a common border in the Arctic, have had good relations, but these have become strained since Russia's annexation of Ukrainean territory in the  Crimean peninsula 

RFERL:         Infosecurity Magazine:         Security Week:        BBC:         112 UA

You Might Also Read: 

German Government Hit By Russian Hackers:

 

« Social Media Has Gone Global
Artificial Intelligence: Threats & Opportunities »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

WEBINAR: 2024 and Beyond: Top Six Cloud Security Trends

WEBINAR: 2024 and Beyond: Top Six Cloud Security Trends

April 4, 2024 | 11:00 AM PT: Join this webinar to find out about six emerging trends dominating the cloud cybersecurity landscape.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Prolinx

Prolinx

Prolinx provide secure Data Centre hosting services and other fully managed security services for networks and information systems.

Yubico

Yubico

Yubico sets new global standards for simple and secure access to computers, mobile devices, servers, and internet accounts.

Tukan IT

Tukan IT

Tukan IT provides a data classification and protection solution.

AllClear ID

AllClear ID

AllClear ID provides products and services that help protect people and their personal information from threats related to identity theft.

RKH Specialty

RKH Specialty

RKH Specialty, part of the Hyperion Insurance Group, is a provider of specialty insurance services including Cyber Risk cover.

ThreatQuotient

ThreatQuotient

ThreatQuotient delivers an open and extensible threat intelligence platform to provide defenders the context, customization and collaboration needed for increased security effectiveness.

Secura

Secura

The Secura Cyber Security and Intelligence system predicts and prevents security threats by discovering hidden patterns through the meticulous analysis of large amounts of data.

Zeguro

Zeguro

Zeguro provides complete cybersecurity risk assessment, mitigation and insurance, allowing you to easily manage your cyber risk.

CloudOak

CloudOak

CloudOak is a cloud channel provider for hybrid cloud Backup as a Service (BaaS), Disaster Recovery as a Service (DRaaS) and Archiving to Small to Medium Business (SMB).

Datrix

Datrix

Datrix is a leading Smart Infrastructure and Cyber Security solutions provider. We deliver critical networking, communications and cyber security solutions to public and private sector organisations.

NARIS

NARIS

NARIS is the leading provider of an integrated Governance, Risk and Compliance platform called NARIS GRC.

Ascent Solutions

Ascent Solutions

Ascent is built to help firms evolve their cybersecurity posture, modernize their Microsoft solutions, and accelerate their journey to the cloud.

Cyber Crucible

Cyber Crucible

Cyber Crucible is a cybersecurity Software as a Service company definitively removing the risk of data extortion from customer environments.

CertiProf

CertiProf

CertiProf has been enhancing professional lives since 2015, offering a wide range of IT certifications and agile framework training.

endpointX

endpointX

endpointX is a preventative cyber security company. We help companies minimize their risk of breach by improving cyber hygiene.

Cybit

Cybit

Cybit is the one-stop-shop for digital transformation that scales in line with your growth.