Moscow-linked hackers hit anti-doping agencies: Microsoft
PARIS (AFP) — A hackers group linked to Moscow has targeted sporting and anti-doping organizations across the world with “significant” cyberattacks as anti-doping authorities mull new allegations against Russia.
Microsoft said it had tracked “significant cyberattacks originating from a group we call Strontium, also known as Fancy Bear/APT28, targeting anti-doping authorities and sporting organizations around the world.”
The attacks began on Sept. 16 and took aim at least 16 international sporting and anti-doping agencies on three continents, according to Microsoft’s customer security vice president Tom Burt.
The latest cyberattacks involve spear-phishing and password spray, exploiting internet-connected devices and using both opensource and custom malware, Microsoft said.
“Some of these attacks were successful, but the majority were not,” Burt said in an official Microsoft blog.
Travis Tygart, head of the U.S. Anti-Doping Agency (USADA), told AFP: “There was evidence of what they call in the industry a brute force password attack.
“There was no breach. We spotted it and stopped it. We’ve been in touch with our relevant partners including Microsoft and others about it,” he added, without confirming the origin of the attack.
The World Anti-Doping Agency (WADA) also said there was “no evidence of any breach of WADA’s systems having occurred”.
WADA is reviewing allegations that Russia manipulated data from the Moscow laboratory at the center of the state-sponsored doping scandal that erupted ahead of the 2016 Rio Olympics.
WADA said it hoped to reach a decision by the end of the year that could result in new sanctions on Russia.
Microsoft said Fancy Bear, linked to Russian intelligence agencies, had previously targeted anti-doping organizations after revelations of the Russian doping conspiracy between 2011-2015 led to the country being banned from international competition.
The Fancy Bear group was accused of launching massive cyberattacks on the United States ahead of the 2016 presidential elections.
In February this year, Microsoft said the group of hackers carried out cyberattacks on European institutions ahead of European elections.
In October 2018, a U.S. court indicted seven agents said to be from Russian military intelligence following a probe into theft of electronic data from anti-doping agencies in 2016 and 2018.