U.S., U.K. WARN OF RUSSIAN HACK
Moscow’s hackers exploiting Western govts’ routers, firewalls
RUSSIAN governmentsponsored hackers are compromising the key hardware of government and business computer networks like routers and firewalls, giving them virtual control of data flows, Britain and the United States warned on Monday.
The operation was “to support espionage, extract intellectual property, maintain persistent access to victim networks and potentially lay a foundation for future offensive operations”, Washington and London said in a joint statement.
“Whoever controls the routing infrastructure of a network essentially controls the data flowing through the network.”
The US Department of Homeland Security (DHS) said the hacking was part of a broad operation dubbed Grizzly Steppe, which comprised concerting cyberattacks by Moscow’s civilian and military intelligence agencies.
The router hacking operation has targeted both government and private sector groups, and the key providers of network infrastructure and Internet services serving them.
The announcement came in an unprecedented joint alert that underscored closer cooperation between Western governments fighting what they say is an ongoing, multifaceted hacking and online disinformation campaign by Moscow.
The alert came from the Britain’s National Cyber Security Centre, DHS and the US Federal Bureau of Investigation.
It came after more than one year of separate warnings over the attempted hacking of key infrastructure, like power and water utilities, in Western countries.
The two sides did not give examples of systems that had been broken into, but said those compromised risked losing data, identities, passwords and even control of their own systems.
In an operation like an electric power plant, the hacker could shut down the service or physically damage a plant.
“The current state of US and UK network devices, coupled with a Russian government campaign to exploit these devices, threatens our respective safety, security, and economic well-being,” it said.