Russia Claims ‘Increase in Cyberattacks by West Spies’

Uploaded on 2016-07-21 in INTELLIGENCE-Hot Spots-Russia, INTELLIGENCE--International, GOVERNMENT-National, GOVERNMENT-Defence, FREE TO VIEW, NEWS-Cybersecurity News, TECHNOLOGY--Hackers

Just as Western governments are concerned about Chinese or Russian state hackers, the Kremlin worries that its government agencies are under increasing western attack, and is concerned about skill shortages in government.

There has been a significant increase in the number of cyber-attacks conducted by foreign special services on web-servers at Russian state bodies and critical infrastructure since the beginning of the current year, according to recent statements by Nikolai Patrushev, a Secretary of the Russian Security Council, (a consultative body that formulates the Russian President's policies on national security issues).

According to Patrushev, despite repeated warnings to desist, the majority of Russian officials continue to use Western IT-services in their work, a practice which is claimed to be associated with a high threat of information leakage and which opens up the possibility of a remote blockade of their work from abroad.

Patrushev adds that the level of knowledge, skills and abilities of officials responsible for IT security in the Russian state bodies remains poor, with only six percent having specifically studied information security.

Since the beginning of the current year Russian state agencies and bodies have suffered more than 10 million cyber-attacks.

An example was an attack on the web-server of Russia's President Vladimir Putin, (at the end of last year), which resulted in denial of service lasting several hours on the Kremlin's web-servers. Dmitry Peskov, an official spokesman of Russia's President, told SCmagazineUK.com that the attack was conducted from abroad and was organised with the participation of the special services of some foreign states. Other details were not disclosed.

This official web-server of Russia's President has again been subject to cyber-attacks this year, however most attacks are reported to have been prevented by the Russian Federal Security Service at their initial stage.

According to Ilya Sachkov CEO of Group-IB, a Russian private company which specialises in investigation of cyber-crimes, the primary motives for hackers attacking the web-servers of Russian state bodies is for cyber-espionage, as well as for propaganda.

Also, the number of cyber-attacks for political purposes has increased in recent years. The majority of these are DDoS attacks, however there has also been an increase in other types of cyber-attack.

While the extent of US surveillance activity was revealed by Snowden, and the Stuxnet attack on an Iranian nuclear power station is widely understood to have been a US/Israeli operation, western governments have yet to admit offensive cyber-activity - though the UK has formally accepted it as a legitimate option. 

And recently Nato approved language that defines cyberspace as a domain of war. Similarly, Russia and China have denied conducting such operations despite evidence to the contrary. However, it is generally assumed that all governments with the capability to do so currently engage in cyber-espionage.

Sergey Stepanichev, a senior analyst of NPO Energia, a Russian IT company which designs anti-virus software, told SC that the sophistication of cyber-attacks is constantly improving and it is expected that their numbers will significantly increase prior to September elections to the Russian Parliament (State Duma).

Stepanichev has also reiterated that simple installation of anti-virus software is no longer enough to deal with the range of cyber-threats faced, while modern IT security system at state organisations involves building a   monitoring system and the system of information exchange on cyber threats.

SC Magazine

« Industrialisation Of Cybercrime Is Disrupting Business
Ransomware Victims Run Into Millions »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

NSFOCUS Information Technology

NSFOCUS Information Technology

NSFOCUS is a global service provider and enterprise DDoS mitigation solution provider.

Outpost24

Outpost24

Outpost24 provides easy to deploy and intuitive solutions to continuously identify, remediate and mitigate vulnerabilities in your network.

Guardtime

Guardtime

Guardtime's Black Lantern platform provides real-time cybersecurity and data-centric asset protection.

Australian Cyber Security Growth Network (AustCyber)

Australian Cyber Security Growth Network (AustCyber)

AustCyber brings together businesses and researchers to develop the next generation of cyber security products and services.

IdenTrust

IdenTrust

IdenTrust enables organizations to effectively manage the risks associated with identity authentication.

Pradeo

Pradeo

Pradeo Security offers a complete, automatic and seamless protection to mobile devices and applications, aligned with your organization security policy while preserving business agility.

LMG Security

LMG Security

LMG Security is a cybersecurity consulting, research and training firm.

Office of the Government Chief Information Officer (OGCIO) - Hong Kong

Office of the Government Chief Information Officer (OGCIO) - Hong Kong

OGCIO supports the development of community-wide information technology infrastructure and setting of technical and professional standards to strengthen Hong Kong’s position as a world digital city.

Kapalya

Kapalya

Kapalya empowers businesses and their employees to securely store sensitive files at-rest and in-transit across multiple platforms through a user-friendly desktop and mobile application.

BEAM Teknoloji

BEAM Teknoloji

BEAM Technology is an independent Software Quality and Security Testing Center in Turkey.

Sweepatic

Sweepatic

The Sweepatic reconnaissance platform discovers and analyses all internet facing assets and their exposure to risk.

Norwest Venture Partners (NVP)

Norwest Venture Partners (NVP)

Norwest Venture Partners offer entrepreneurs a broad range of services to help them build their businesses at every stage of growth. Key sectors include AI, Infrastructure, SaaS and Security.

European Center for CyberSecurity in Aviation (ECCSA)

European Center for CyberSecurity in Aviation (ECCSA)

ECCSA is a cooperative partnership within the aviation community to better understand emerging cybersecurity risks in aviation and provide collective support in dealing with cybersecurity incidents.

Delta Partners

Delta Partners

Delta Partners is a venture capital firm investing in Ireland and the United Kingdom with a strong focus on early stage technology companies.

Apollo Secure

Apollo Secure

Apollo is an automated cybersecurity platform for startups and small businesses to achieve and maintain security compliance.

CelcomDigi

CelcomDigi

CelcomDigi aspire to be Malaysia’s top Telco-Tech company, transforming beyond core connectivity to lead digitalization and innovation as part of nation-building.