Hackers backed by the Russian state are trying to steal COVID-19 vaccine and treatment research from academic and pharmaceutical institutions around the world, Britain's National Cyber Security Centre (NCSC) said on Thursday.
A co-ordinated statement from Britain, the United States and Canada attributed the attacks to group APT29, also known as Cozy Bear, which they said was almost certainly operating as part of Russian intelligence services.
"We condemn these despicable attacks against those doing vital work to combat the coronavirus pandemic," said NCSC Director of Operations Paul Chichester.
Cybersecurity researchers said an APT29 hacking tool was used against clients located in United States, Japan, China and Africa over the last year.
Russian news agency RIA cited spokesman Dmitry Peskov as saying the Kremlin rejected London's allegations, which he said were not backed by proper evidence.
In a separate announcement Britain also accused "Russian actors" of trying to interfere in its 2019 election by trying to spread leaked documents online. Russia's foreign ministry said those accusations were "foggy and contradictory".
Britain is expected to publish a long-delayed report into Russian influence in British politics next week.
"SELFISH INTERESTS"
British foreign minister Dominic Raab said it was "completely unacceptable" for Russian intelligence services to target work on the pandemic.
"While others pursue their selfish interests with reckless behaviour, the UK and its allies are getting on with the hard work of finding a vaccine and protecting global health," he said in a statement. He said Britain would work with allies to hold perpetrators to account.
The NCSC said the group's attacks were continuing and used a variety of tools and techniques, including spear-phishing and custom malware.
"APT29 is likely to continue to target organisations involved in COVID-19 vaccine research and development, as they seek to answer additional intelligence questions relating to the pandemic," the NCSC statement said.
The U.S. Department of Homeland Security and U.S. Cyber Command also released technical information on Thursday about three hacking tools being deployed by the Russian hackers, codenamed WELLMAIL, SOREFANG and WELLMESS.
Private sector cybersecurity researchers who had spotted the WELLMESS malware over the last year were unaware of its Russian origins until Thursday.
In several cases, WELLMESS was found within U.S. pharmaceutical companies, said three investigators familiar with the matter, who spoke on condition of anonymity to discuss confidential information. The tool allowed the hackers to stealthily gain remote access to secure computers. They declined to name the victims.
Britain and the United States said in May that networks of hackers were targeting national and international organisations responding to the pandemic. But such attacks have not previously been explicitly connected to the Russian state.
Reuters
Fri Jul 17 2020
Cybersecurity researchers said an APT29 hacking tool was used against clients located in United States, Japan, China and Africa over the last year - Filepic
28,531 calon UPKK 2023 raih 8A
28,531 daripada 230,580 calon yang menduduki Ujian Penilaian Kelas KAFA (UPKK) 2023 berjaya catat keputusan cemerlang A dalam kesemua lapan mata pelajaran.
Dua individu ditahan bantu siasatan minta, terima sogokan daripada firma guaman
SPRM menahan dua individu selama empat hari bagi membantu siasatan berkaitan penerimaan wang suapan daripada beberapa firma guaman.
Operasi PeWA: JPJ Pulau Pinang sita 22 kenderaan, keluar 63 saman
JPJ Pulau Pinang menyita 22 kenderaan yang dipandu warga asing dalam Ops Khas Pemandu Warga Asing (PeWA) di Bulatan Tun Hussain Onn, Seberang Jaya.
Lisa BLACKPINK beli rumah ‘tersorok’ di Beverly Hills, harga RM19 juta
Tidak ada yang mengejutkan apabila Lisa BLACKPINK telah menambah satu lagi aset berbentuk kediaman.
Stoking tertera kalimah Allah: Hukuman penjara, denda terhadap Wai Loong dibatalkan
Hakim membenarkan semakan difailkan tertuduh supaya pengakuan bersalah dibuatnya atas pertuduhan berkenaan, bukan akuan jelas dan tanpa bersyarat.
[TERKINI] Letusan Gunung Ruang: Indonesia keluar amaran tahap tertinggi
Pihak berkuasa Indonesia meningkatkan amaran keselamatan ke tahap tertinggi selepas Gunung Ruang yang meletus beberapa kali di Kepulauan Sangihe kelmarin, mengeluarkan asap setinggi lebih 1.6 kilometer (km) sehingga memaksa ratusan penduduk dipindahkan.
Mengenang sumbangan dan jasa Joseph Kurup
Pensyarah Kanan Universiti Malaysia Sabah, Dr Romzi Ationg berkongsi pandangan dan memperingati sumbangan dan jasa mendiang Joseph Kurup.
Ronaldo digantung dua perlawanan kerana berkelakuan ganas
Cristiano Ronaldo digantung dua perlawanan kerana menyiku lawan dan mengancam menyerang pengadil selepas Al Nassr tewas kepada Al Hilal.
PBAPP akan lepas air dari EMD jika Sungai Muda terus menyusut
PBAPP boleh melepaskan maksimum 600 juta liter air mentah sehari (JLH) dari EMD yang berfungsi sebagai sumber sokongan kemarau apabila Sungai Muda terus menyusut berikutan cuaca kering.
TikTok mulakan ujian untuk aplikasi perkongsian gambar dan teks
TikTok Notes akan memudahkan perkongsian perkembangan harian dengan lebih mudah dan kreatif menggunakannya.