Saturday, August 13, 2022
  • Privacy Policy
  • Copyright
TV USA | Live
Weather ☀
Exchange Rates $
  • Politics
  • International
  • Society
  • Sports
  • Blog
  • Contact
No Result
View All Result
  • Politics
  • International
  • Society
  • Sports
  • Blog
  • Contact
No Result
View All Result
TV USA | Live
No Result
View All Result
Home International

Russia’s Nobelium using USAID’s email system for hack, Microsoft says

TV USA | Live by TV USA | Live
May 28, 2021
in International
0
Russia's Nobelium using USAID's email system for hack, Microsoft says

The Russian hackers thought to be behind the catastrophic SolarWinds attack last year have launched another major cyberattack, Microsoft warned three weeks before President Joe Biden is to meet with Russian President Vladimir Putin.

Microsoft said in a blog post Thursday that the hacking group, known as Nobelium, had targeted over 150 organizations worldwide in the last week, including government agencies, think tanks, consultants and nongovernmental organizations.

They sent phishing emails — spoof messages designed to trick people into handing over sensitive information or downloading harmful software — to more than 3,000 email accounts, the tech giant said.

At least 25% of the targeted organizations are involved in international development, humanitarian and human rights work, said Tom Burt, Microsoft’s corporate vice president of customer security and trust.

 “These attacks appear to be a continuation of multiple efforts by Nobelium to target government agencies involved in foreign policy as part of intelligence gathering efforts,” Burt said.

Organizations in at least 24 countries were targeted, Microsoft said, with the U.S. receiving the largest share of attacks.

The breach has been discovered three weeks before the Biden-Putin summit in Geneva on June 16.

It also comes a month after the U.S. government explicitly said that the SolarWinds hack was carried out by Russia’s SVR, a successor to the foreign spying operations of the Soviet KGB.

The Kremlin said Friday it does not have any information on the cyberattack and that Microsoft needs to answer more questions, including how the attack is linked to Russia, Reuters reported. The Kremlin did not immediately respond to CNBC’s request for comment.

The hack explained

Microsoft said Nobelium gained access to an email marketing account used by the U.S Agency for International Development, the federal government’s aid agency. The account is held on a platform called Constant Contact.

Burt said Nobelium used the account to “distribute phishing emails that looked authentic but included a link that, when clicked, inserted a malicious file.”

The file contains a backdoor that Microsoft calls NativeZone, which can “enable a wide range of activities from stealing data to infecting other computers on a network,” according to Burt, who said Microsoft is in the process of notifying customers who have been targeted.

USAID said a forensic investigation into the breach is ongoing.

“The U.S. Agency for International Development became aware of potentially malicious email activity from a compromised Constant Contact email marketing account,” a USAID spokesperson said in a statement shared with CNBC. “The forensic investigation into this security incident is ongoing. USAID has notified and is working with all appropriate Federal authorities, including the U.S. Department of Homeland Security and the Cybersecurity and Infrastructure Security Agency.”

A spokesperson for Constant Contact told CNBC the company is aware that the account credentials of one its customers were compromised and used by a malicious actor to access the customer’s Constant Contact accounts.

“This is an isolated incident, and we have temporarily disabled the impacted accounts while we work in cooperation with our customer, who is working with law enforcement,” they said.

A CISA spokesperson told CNBC the agency is aware of the the potential compromise and that it was working with the FBI and USAID to better understand the extent of what’s happened.

Steve Forbes, a government cybersecurity expert at domain name manager Nominet, outlined the dangers of these types of hacks.

“Phishing attacks are essentially a numbers game and the attackers are playing the odds,” he said in a statement. “If they target 3,000 accounts, it only takes one employee to click on the link to establish a backdoor for the hackers in a government organization.”

The SolarWinds attack, uncovered in December, turned out to be much worse than first expected. It gave the hackers access to thousands of companies and government offices that used SolarWinds IT software.

Microsoft President Brad Smith described that attack as “the largest and most sophisticated attack the world has ever seen.”

Earlier this month, Russia’s spy chief denied responsibility for the SolarWinds cyberattack but said he was “flattered” by the accusations from the U.S and the U.K. that Russian foreign intelligence was behind such a sophisticated hack.

TV USA | Live

See author's posts

Tags: business newsCybersecurityJoe BidenMicrosoft CorpRussia governmentSolarWinds Inc.TechnologyUnited States governmentVladimir Putin
Previous Post

Key U.S. inflation gauge rose 3.1% year over year, higher than expected

Next Post

AMC stock erases a 38% rally and turns red in wild trading

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Popular Stories

  • Capitol Hill's dangerous kangaroo court

    The desperation of the Jan. 6 House Committee

    0 shares
    Share 0 Tweet 0
  • U.S. sanctions on Russia violate the Constitution

    0 shares
    Share 0 Tweet 0
  • Voting kicks off in a New York City mayor’s race like no other

    0 shares
    Share 0 Tweet 0
  • Unleash the Power of Postbiotics in Pets

    0 shares
    Share 0 Tweet 0
  • Tensions Rise Over Future of Abortion Rights in US

    0 shares
    Share 0 Tweet 0

International

Saskatchewan’s Sweet Nutrition quadruples sales since 2019, lands deal with 7-Eleven
International

Saskatchewan’s Sweet Nutrition quadruples sales since 2019, lands deal with 7-Eleven

June 29, 2022
Saskatchewan’s Sweet Nutrition quadruples sales since 2019, lands deal with 7-Eleven
International

Saskatchewan’s Sweet Nutrition quadruples sales since 2019, lands deal with 7-Eleven

June 29, 2022
Saskatoon artist inks locals to raise money for Ukraine
International

Saskatoon artist inks locals to raise money for Ukraine

June 28, 2022
‘I kept it hidden’: Survivor of Kamloops Indian Residential School speaks for 1st time
International

‘I kept it hidden’: Survivor of Kamloops Indian Residential School speaks for 1st time

June 28, 2022
WATCH: Global National – June 27
International

WATCH: Global National – June 27

June 28, 2022
‘A body check’: Kids restrained over 2000 times in one year in Ontario’s child-welfare system
International

‘A body check’: Kids restrained over 2000 times in one year in Ontario’s child-welfare system

June 28, 2022
NOTE FROM JOÃO BAPTISTA BORGES, EMERGENCY PLAN TO COMBAT EPIDEMIC COVID-19: MINEA WANTS AN EPAL THAT MEETS THE POPULATION’S NEEDS
International

NOTE FROM JOÃO BAPTISTA BORGES, EMERGENCY PLAN TO COMBAT EPIDEMIC COVID-19: MINEA WANTS AN EPAL THAT MEETS THE POPULATION’S NEEDS

June 16, 2022

TV USA | Live

 JNews - Premium WordPress news & magazine theme by Jegtheme.

 

 

© 2022 JNews. All rights reserved.

No Result
View All Result
  • Politics
  • International
  • Society
  • Sports
  • Blog
  • Contact

© 2022 JNews - Premium WordPress news & magazine theme by Jegtheme.

We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
Do not sell my personal information.
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT