It turns out that a hacker group supported by Russia was attacking anti-doping organizations around the world


by skeeze

Microsoft revealed that Russian-backed hacker groups have conducted cyber attacks against 16 anti-doping organizations around the world. According to Microsoft, at least some attacks have been successful.

New cyberattacks targeting sporting and anti-doping organizations-Microsoft on the Issues
https://blogs.microsoft.com/on-the-issues/2019/10/28/cyberattacks-sporting-anti-doping/



Russia's Fancy Bear hackers conduct “significant cyberattacks” on anti-doping agencies | Ars Technica
https://arstechnica.com/information-technology/2019/10/russias-fancy-bear-hacking-group-targets-olympics-organizations-again/

The Russian cyber-spy group “Tsar Team”, known as “Fancy Bear”, gained attention in 2016 in an attack on the World Anti-Doping Agency (WADA). At that time, Fancy Bear stealed medical data of athletes related to the Rio Olympics from WADA's anti-doping management system (ADAMS) database and released some data in the public domain.

Discovered that the World Anti-Doping Organization was hacked from Russia-GIGAZINE



According to what Microsoft revealed on the blog, Fancy Bear once again attacked the Olympics. The attack began on September 16, 2019, just a few days before WADA announced it would begin the process of reviewing the eligibility of the Russian Anti-Doping Agency (RUSADA). Russia had been suspended for about three years as a state-wide doping at the 2014 Sochi Winter Olympics, but this disposition was lifted in September 2018. However, on September 21, 2019, it was found that there was a suspicion that the storage data collected by WADA from the Moscow laboratory was altered prior to submission to WADA.

“Contradiction” with Russian data, WADA investigates organized doping problem 1 photo International News: AFPBB News
https://www.afpbb.com/articles/-/3245855



Microsoft does not identify the name of the organization under attack in the blog, but notes that there is a fancy bear behind the attack. Microsoft also identified cyber attacks involving Fancy Bear in July and August .

`` The most recent attack was the technique Strontium (Fancy Bear) used frequently to target organizations around the world such as government, military, think tanks, law firms, human rights groups, financial institutions, universities, etc. “Strontium uses spear phishing, password spray attacks, attacks using IoT, open source and custom malware techniques,” says Microsoft's Tom Burt .

In addition, from the contents announced by the U.S. National Security Agency in 2018, if Fancy Bear fails the above method, it knows that it will actually approach the target and hack through the hotel's Wi-Fi etc. .

According to Bart, most of the most recent attacks were unsuccessful, but some were successful, and Microsoft reported to targeted customers. In the coming weeks or months, Bartle explains that information stolen by successful attacks could be leaked. It is highly likely that information related to the 2020 Olympics will be released.

in Security, Posted by logq_fa