Daily Management Review

Core systems at energy companies may have been compromised by hackers: Symantec


09/06/2017


Security researchers at Symantec have raised concerns regarding core systems at industrial firms, including those in the United States and Europe, being compromised by attackers, who could leverage them for destructive purposes in the event of a major geopolitical conflict.



Researchers at cyber security company Symantec have warned, advanced hackers who have earlier targeted energy companies in Europe and in the United States, have in some cases managed to penetrate into core systems that control the companies’ operations.
 
In a report published on Wednesday, researchers at Symantec disclosed that hackers having targeted these institutions with malicious email campaigns have gained entry into organizations in  Switzerland, United States and Turkey, as well as in other countries.
 
The cyber attacks, which began in late 2015, have increased in frequency in April this year.
In an interview, Eric Chien, a cyber security researcher from Symantec said, these attacks are probably the work of a foreign government and have the hallmarks of the Dragonfly, a hacking group.

The report adds to concerns that industrial firms, including utilities and power providers, are vulnerable to cyber attacks that could be leveraged for destructive purposes in the event of a major geopolitical conflict.

Earlier in June, the U.S. government had warned industrial firms on a hacking campaign that targeted nuclear and energy sectors through phishing emails that harvested credentials in order to gain access to the targeted networks.

As per Chien, while dozens of companies have been targeted across the world, a handful of them have been compromised on the operational level. This level of access means that motivation is “the only step left” which prevents “sabotage of the power grid,” said Chien.

Dragonfly was active from 2011 to 2014. After security researchers exposed its attacks, the group, which also goes by the name of Energetic Bear or Koala, became dormant.

Among the cyber security community, it is widely to be tied to the Russian government.

Although Symantec’s report did not specifically mention Russia, its report however noted that the attackers used code strings that were in Russian and French. This could mean that the attackers were attempting to make obfuscate their identity, said Symantec.


References:
reuters.com







Science & Technology

Samsung Galaxy Fold: Expensive but fragile

USA and South Korea launch the first commercial 5G networks

Deliveries of AR/VR devices to grow by 54% in 2019

Anti-Stall System Got Activated Before Crash In The Ethiopian 737 MAX Craft: Reuters

Google’s Global Council To Advocate On AI Ethics

US wants to send astronauts to the moon by 2024

Apple shows new entertainment services

Large U.S. Study Finds Detection Of Irregular Heart Beat By Apple Watch

Apple to present Netflix competitor at the end of March

Live Human Under-Skin Chip Implantation Takes Place At Barcelona

World Politics

World & Politics

Foxconn Head Gou Could Run For Taiwan President Election Next January

France opposes EU-US trade negotiations

United States and China to implement trade agreement

Norway's largest party to ban oil production near Lofoten Islands

Estonia's euroskeptics are about to join the government

Eastern Europe wins in double food standards fight

White House Received New Sanctions’ Package For Russia: Bloomberg

EU will stop saving migrants in the Mediterranean