SolarWinds Hackers Linked To Known Russian Spying Tools

Written by on 01/11/2021

SolarWinds Hackers Linked To Known Russian Spying Tools

Via Reuters:

The group behind a global cyber-espionage campaign discovered last month deployed malicious computer code with links to spying tools previously used by suspected Russian hackers, researchers said on Monday.

Investigators at Moscow-based cybersecurity firm Kaspersky said the “backdoor” used to compromise up to 18,000 customers of U.S. software maker SolarWinds closely resembled malware tied to a hacking group known as “Turla,” which Estonian authorities have said operates on behalf of Russia’s FSB security service.

The findings are the first publicly-available evidence to support assertions by the United States that Russia orchestrated the hack, which compromised a raft of sensitive federal agencies and is among the most ambitious cyber operations ever disclosed.

Moscow has repeatedly denied the allegations. The FSB did not respond to a request for comment.

Costin Raiu, head of global research and analysis at Kaspersky, said there were three distinct similarities between the SolarWinds backdoor and a hacking tool called “Kazuar” which is used by Turla.

The similarities included the way both pieces of malware attempted to obscure their functions from security analysts, how the hackers identified their victims, and the formula used to calculate periods when the viruses lay dormant in an effort to avoid detection.

“One such finding could be dismissed,” Raiu said. “Two things definitely make me raise an eyebrow. Three is more than a coincidence.”

Confidently attributing cyberattacks is extremely difficult and strewn with possible pitfalls. When Russian hackers disrupted the Winter Olympics opening ceremony in 2018, for example, they deliberately imitated a North Korean group to try and deflect the blame.

Raiu said the digital clues uncovered by his team did not directly implicate Turla in the SolarWinds compromise, but did show there was a yet-to-be determined connection between the two hacking tools.

It’s possible they were deployed by the same group, he said, but also that Kazuar inspired the SolarWinds hackers, both tools were purchased from the same spyware developer, or even that the attackers planted “false flags” to mislead investigators.

Security teams in the United States and other countries are still working to determine the full scope of the SolarWinds hack. Investigators have said it could take months to understand the extent of the compromise and even longer to evict the hackers from victim networks.

U.S. intelligence agencies have said the hackers were “likely Russian in origin” and targeted a small number of high-profile victims as part of an intelligence-gathering operation.

What Is The Crusade Channel?

The CRUSADE Channel, The Last LIVE! Radio Station Standing begins our LIVE programming with the flagship broadcast of The CRUSADE Channel, the internationally acclaimed and syndicated, Mike Church Show. With 28 years of professional Talk radio experience including 13 years as the premiere talk show on the SiriusXM Patriot Channel (Mike was succeeded by Steve Bannon!), The KingDude entertains and enlightens you during your morning drive. Mike brings his voluminous knowledge of the political and historical world with a magnificent list of recurring “A-List Guests” including The Lepanto Institute’s Michael Hichborn, Professor Donald Livingston, William Briggs, Brother André Marie, Carrie Gress, Congressman Thomas Massie, Congressman Ron Paul, John Horvat and too many others to list. Next up is Richard Barrett,s Barrett Brief Show, giving you the news of the day and the narrative that will follow during your lunch break!

We’ve interviewed over 200 guests, seen Brother Andre Marie notch his 260th broadcast of Reconquest; the The Mike Church Show over 1200 episodes; launched an original LIVE! News Service; written and produced 4 Feature Length original dramas including The Last Confession of Sherlock Holmes and set sail on the coolest radio product ever, the 5 Minute Mysteries series! We are the ONLY outlet to cover the Impeachment of President Trump from gavel to gavel and most recently the stolen election of 2021 and President Trump’s noble efforts to expose the fraud and deceit of the greatest political heist in human history! 

Now that you have discovered The Crusade, get 30 days for FREE of our premium service just head to:

https://crusadechannel.com

OR download our FREE app:

https://apps.appmachine.com/theveritasradionetworkappIti-

Did you know about the Hackers? If you are interested in supporting small business, be sure to check out the official store of the Crusade Channel, the Founders Tradin Post! Not to mention our amazing collection of DVD’s, Cigars, T-Shirts, bumper stickers and other unique selection of items selected by Mike Church! 

Tagged as


CRUSADE Channel Previews

CRUSADE Preview-Call 844-527-8723 To Subscribe

Current track

Title

Artist

>