Daily Management Review

Core systems at energy companies may have been compromised by hackers: Symantec


09/06/2017


Security researchers at Symantec have raised concerns regarding core systems at industrial firms, including those in the United States and Europe, being compromised by attackers, who could leverage them for destructive purposes in the event of a major geopolitical conflict.



Researchers at cyber security company Symantec have warned, advanced hackers who have earlier targeted energy companies in Europe and in the United States, have in some cases managed to penetrate into core systems that control the companies’ operations.
 
In a report published on Wednesday, researchers at Symantec disclosed that hackers having targeted these institutions with malicious email campaigns have gained entry into organizations in  Switzerland, United States and Turkey, as well as in other countries.
 
The cyber attacks, which began in late 2015, have increased in frequency in April this year.
In an interview, Eric Chien, a cyber security researcher from Symantec said, these attacks are probably the work of a foreign government and have the hallmarks of the Dragonfly, a hacking group.

The report adds to concerns that industrial firms, including utilities and power providers, are vulnerable to cyber attacks that could be leveraged for destructive purposes in the event of a major geopolitical conflict.

Earlier in June, the U.S. government had warned industrial firms on a hacking campaign that targeted nuclear and energy sectors through phishing emails that harvested credentials in order to gain access to the targeted networks.

As per Chien, while dozens of companies have been targeted across the world, a handful of them have been compromised on the operational level. This level of access means that motivation is “the only step left” which prevents “sabotage of the power grid,” said Chien.

Dragonfly was active from 2011 to 2014. After security researchers exposed its attacks, the group, which also goes by the name of Energetic Bear or Koala, became dormant.

Among the cyber security community, it is widely to be tied to the Russian government.

Although Symantec’s report did not specifically mention Russia, its report however noted that the attackers used code strings that were in Russian and French. This could mean that the attackers were attempting to make obfuscate their identity, said Symantec.


References:
reuters.com







Science & Technology

Tech giants face stricter government regulation in the US

Nestle's Head: Veggie meat is new megatrend

Huawei may introduce Android replacement in August

Are US high-tech investors causing brain drain in Europe?

'Russia's Google' Yandex Was Hacked By Western Intelligence For Spying: Reuters

Reuters: Chinese hackers were stealing data from IT giants for years

China's first solar power molten salt plant sets record

WSJ announces imminent start of Boeing 737 MAX flight tests

Study: Machine learning is five times more harmful for the environment than a car

Would Singapore Be The First One To Bring Lab Grown Shrimps To The Global Market?

World Politics

World & Politics

France announces new tax for air fares

Europe Concerned Over Iran Move To Breach Uranium Enrichment Cap

Singapore To Build ‘$296 Million’ Smart Next-Gen Army Training Centre

No More Sales Of E-Cigarettes In San Francisco?

US ‘Hell-Bent On Hostile Acts’ Even After Trump-Kim Agreement, Says North Korea

Italy avoids EU sanctions for high national debt

Trump allocates 4.6 bln to help migrants

Iran Says Trump’s Belief That US-Iran War Would Be Short Is “An Illusion”