Russian hackers targeting US Senate email accounts since June 2017: Report

A hacking group allegedly associated with the Russian government is actively targeting the US Senate's internal email system since Ju...

A hacking group allegedly associated with the Russian government is actively targeting the US Senate's internal email system since June 2017, a cybersecurity firm claimed on Saturday.

According to Japanese cybersecurity firm Trend Micro, this is the same group that hacked into the Democratic National Committee (DNC) in 2016.

The hackers' activities began in June 2017 when they attempted to compromise a lawmaker's credentials through a phishing site designed to look like the Senate's internal email system.

"Beginning in June 2017, phishing sites were set up mimicking the ADFS (Active Directory Federation Services) of the US Senate. By looking at the digital fingerprints of these phishing sites and comparing them with a large data set that spans almost five years, we can uniquely relate them to a couple of 'Pawn Storm' incidents in 2016 and 2017," the security company said in a blog post.

"The real ADFS server of the U. S.

Senate is not reachable on the open internet, however phishing of users' credentials on an ADFS server that is behind a firewall still makes sense. In case an actor already has a foothold in an organization after compromising one user account, credential phishing could help him get closer to high profile users of interest," it added.

Trend Micro's report focuses on the efforts of a hacking group called "Pawn Storm" -- "an extremely active espionage actor group" more commonly known as "Fancy Bear".

Cybersecurity firm CrowdStrike has deemed the group a "Russian-based threat actor" with likely ties to Russian military intelligence, Tech Crunch reported.

Earlier this week, BuzzFeed News said that "Fancy Bear" released a set of emails between International Olympic Committee (IOC) employees and third parties discussing the Russian doping conspiracy.

The leaks were apparently done in a retaliation for the decision taken in December 2017, to bar Russia from participating in the Games in Pyeongchang, South Korea by the IOC.

According to cybersecurity firm ThreatConnect, a group with the same name "Fancy Bear" had used the same website and the same format to publish documents in 2016 that had been hacked from the World Anti-Doping Agency (WADA) in response to that agency's finding that hundreds of Russian athletes had taken banned substances.

Last year, Trend Micro reported that "Fancy Bear" group was behind the "massive and coordinated" attack on the campaign of French President-elect Emmanuel Macron.

It is the same group that is blamed for attacking the Democratic party shortly before the US election.


-Source: News Agency


COMMENTS


*

Name

AROUND THE GLOBE,595,business,57,BY READERS,420,FEATURE,231,GLOBE,16,KERALA,12,Movie,305,SPECIAL STORY,347,TAMILNADU,2,TOP STORY,1239,TRAVEL,8,
ltr
item
Local Glob: Russian hackers targeting US Senate email accounts since June 2017: Report
Russian hackers targeting US Senate email accounts since June 2017: Report
https://1.bp.blogspot.com/-ZFpWyxxUBEw/Wloog2S-lJI/AAAAAAAAAQk/mfldQSkIGNIJ2WU8UThdGgHJRxZcCLIlgCLcBGAs/s320/hacker.jpg
https://1.bp.blogspot.com/-ZFpWyxxUBEw/Wloog2S-lJI/AAAAAAAAAQk/mfldQSkIGNIJ2WU8UThdGgHJRxZcCLIlgCLcBGAs/s72-c/hacker.jpg
Local Glob
http://www.localglob.com/2018/01/russian-hackers-targeting-us-senate.html
http://www.localglob.com/
http://www.localglob.com/
http://www.localglob.com/2018/01/russian-hackers-targeting-us-senate.html
true
8255692317570297677
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS CONTENT IS PREMIUM Please share to unlock Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy