Investigators probing a massive hack of the U.S. government and businesses say they have found concrete evidence the suspected Russian espionage operation went far beyond the compromise of the small software vendor publicly linked to the attack. From a report: Close to a third of the victims didn’t run the SolarWinds software initially considered the main avenue of attack for the…
Tag: espionage
Tech Giants Are Giving China a Vital Edge In Espionage.
schwit1 shares a report: The embrace between China’s intelligence services and Chinese businesses has gotten tighter, U.S. officials say. In 2017, under Xi’s intensifying authoritarianism, Beijing promulgated a new national intelligence law that compels Chinese businesses to work with Chinese intelligence and security agencies whenever they are requested to do so — a move that codified “what was pretty much what…
Finland Says Hackers Accessed MPs’ Emails Accounts
The Finnish Parliament said on Monday that hackers gained entry to its internal IT system and accessed email accounts for some members of Parliament (MPs)fin. From a report: Government officials said the attack took place in the fall of 2020 and was discovered this month by the Parliament’s IT staff. The matter is currently being investigated by the Finnish Central Criminal…
US Cyber Agency Says SolarWinds Hackers Are ‘Impacting’ State, Local Governments
The U.S. cybersecurity agency says that a sprawling cyber espionage campaign made public earlier this month is affecting state and local governments, although it released few additional details. From a report: The hacking campaign, which used U.S. tech company SolarWinds as a springboard to penetrate federal government networks, was “impacting enterprise networks across federal, state, and local governments, as well as…
China Accused of Spying On Americans Via Caribbean Phone Networks
“A mobile security expert has accused China of exploiting cellphone networks in the Caribbean to conduct ‘mass surveillance’ on Americans,” reports Newsweek: Gary Miller, a former vice president of network security at California-based analytics company Mobileum, told The Guardian he had amassed evidence of espionage conducted via “decades-old vulnerabilities” in the global telecommunications system. While not explicitly mentioned in the report,…
John le Carre, Author of Spy Novels, Dies at Age 89
“This terrible year has claimed a literary giant and a humanitarian spirit,” tweeted novelist Stephen King, adding later that “The Little Drummer Girl was one of the best novels I’ve ever read.” Margaret Atwood tweeted “His Smiley novels are key to understanding the mid-20th century.” And the Associated Press tells the story of how spy-novel writer John le Carré was “drawn…
Russia Breached Update Server Used by 300,000 Organizations, Including the NSA
Sunday Reuters reported that “a sophisticated hacking group” backed by “a foreign government” has stolen information from America’s Treasury Department, and also from “a U.S. agency responsible for deciding policy around the internet and telecommunications.” The Washington Post has since attributed the breach to “Russian government hackers,” and discovered it’s “part of a global espionage campaign that stretches back months, according…
Malicious npm Packages Caught Installing Remote Access Trojans
The security team behind the “npm” repository for JavaScript libraries removed two npm packages this Monday for containing malicious code that installed a remote access trojan (RAT) on the computers of developers working on JavaScript projects. From a report: The name of the two packages was jdb.js and db-json.js., and both were created by the same author and described themselves as…
Report Claims America’s CIA Also Controlled a Second Swiss Encryption Firm
Long-time Slashdot reader SonicSpike brings this report from AFP:
Swiss politicians have voiced outrage and demanded an investigation after revelations that a second Swiss encryption company was allegedly used by the CIA and its German counterpart to spy on governments worldwide. “How can such a thing happen in a country that claims to be neutral like Switzerland?” co-head of Switzerland’s Socialist Party,…
ZTE’s Designation as Security Threat Affirmed by US FCC
The U.S. Federal Communications Commission affirmed its decision to designate ZTE as a national security threat over concerns telecommunications gear made by the Chinese company could be used for spying. From a report: The action shows that the FCC remains determined to drive ZTE and fellow Shenzhen-based manufacturer Huawei Technologies Co. from the U.S. market, where small rural carriers rely on…