Slashdot Mirror

← Back to Stories (view on slashdot.org)

Cyber Firms Warn on Suspected Russian Plan To Attack Ukraine (reuters.com)

Posted by msmash on from the breaking-news dept.

Jim Finkle, reporting for Reuters: Cisco Systems on Wednesday warned that hackers have infected at least 500,000 routers and storage devices in dozens of countries with highly sophisticated malicious software, possibly in preparation for another massive cyber attack on Ukraine. Cisco's Talos cyber intelligence unit said it has high confidence that the Russian government is behind the campaign, dubbed VPNFilter, because the hacking software shares code with malware used in previous cyber attacks that the U.S. government has attributed to Moscow. Cisco said the malware could be used for espionage, to interfere with internet communications or launch destructive attacks on Ukraine, which has previously blamed Russia for massive hacks that took out parts of its energy grid and shuttered factories. Head of Ukraine's cyber police said on Wednesday that the agency is aware of new large malware campaign, and that it is working to protect Ukraine against possible new cyber threat.

76 comments

  1. Duh! by Anonymous Coward · · Score: 1

    Ya think?

    Actually, name one country that they aren't attacking.

    1. Re:Duh! by Oswald+McWeany · · Score: 4, Funny

      Ya think?

      Actually, name one country that they aren't attacking.

      According to all the people named Ivan that post on Slashdot; Russia is a model democracy, a shining beacon of friendship in the world, and would never consider violating another country's rights on stability. Russia certainly are not cyber attacking any country.

      Wait for the correct timezone to hit rushhour Slashdot traffic.

      --
      "That's the way to do it" - Punch
    2. Re:Duh! by cascadingstylesheet · · Score: 2

      According to all the people named Ivan that post on Slashdot; Russia is a model democracy, a shining beacon of friendship in the world, and would never consider violating another country's rights on stability. Russia certainly are not cyber attacking any country.

      Wait for the correct timezone to hit rushhour Slashdot traffic.

      I wish I had known years ago that all I had to do to become Russian was to disagree with someone on the internet.

    3. Re:Duh! by Oswald+McWeany · · Score: 2

      Hi Ivan!

      --
      "That's the way to do it" - Punch
    4. Re:Duh! by K.+S.+Kyosuke · · Score: 1

      I wish I had known years ago that all I had to do to become Russian was to disagree with someone on the internet.

      I'm pretty sure they'd give offer you at least a work visa for that. Citizenship comes after that.

      --
      Ezekiel 23:20
    5. Re: Duh! by Anonymous Coward · · Score: 0

      How many potatoes a month does GRU pay you for your services?

  2. How massive? by Lije+Baley · · Score: 2

    So just how much damage was done in those "massive" previous attacks, and how long did it take to restore the power grid and factories? Was it worse than squirrels or a hurricane?

    --
    Strange things are afoot at the Circle-K.
    1. Re:How massive? by KixWooder · · Score: 3, Insightful

      Squirrels and/or hurricanes aren't malicious actors with intent.

      --
      I hate fat people.
    2. Re:How massive? by Anonymous Coward · · Score: 0

      That's what they want you to think.

    3. Re:How massive? by AlwinBarni · · Score: 1

      So just how much damage was done in those "massive" previous attacks, and how long did it take to restore the power grid and factories? Was it worse than squirrels or a hurricane?

      I have to say: Amazing. The Moscow school of altering, twisting and diminishing facts is pretty good.

    4. Re: How massive? by Lije+Baley · · Score: 1

      Can you explain why that matters, in terms of the economics of what I should be hysterical about?

      --
      Strange things are afoot at the Circle-K.
    5. Re:How massive? by Anonymous Coward · · Score: 0

      and how long did it take to restore the power grid and factories?

      Maybe not very long, but that was at the cost of extensive outages and rolling blackouts for residential areas. Losing electricity for the better part of a day, for days on end, in Winter, with electric heating, was really not that fun :)

    6. Re: How massive? by Tranzistors · · Score: 1

      in terms of the economics

      Terms of economics are not the only terms out there. If in the USA terrorist organization per year killed as much people as smoking, policy makers would not debate if they should tackle terrorism or smoking first.

    7. Re:How massive? by Anonymous Coward · · Score: 0

      "In the run-up to holidays last month, two power distribution companies in Ukraine said that hackers had hijacked their systems to cut power to more than 80,000 people. The intruders also sabotaged operator workstations on their way out the digital door to make it harder to restore electricity to customers. The lights came back on in three hours in most cases, but because the hackers had sabotaged management systems, workers had to travel to substations to manually close breakers the hackers had remotely opened."

      Russia is not our friend.

    8. Re:How massive? by Lije+Baley · · Score: 1

      Thank you. A 3 hour outage is run-of-the-mill for for wind storms 2 or three times every winter in my location. Storms regularly cause much longer outages that actually kill people, most recently on the U.S. East Coast this past winter. Money spent on chasing "cyber" (a disgusting use of the term) terrorists would be better spent on tree-trimming.

      --
      Strange things are afoot at the Circle-K.
  3. Black List by Only+Time+Will+Tell · · Score: 4, Interesting

    At what point can we just sever as much internet traffic out of Russia to the world? I know I'm massively oversimplifying that effort, but should there not be some sort of 'death penalty' against countries engaging in cyber warfare? China and some other smaller nations would likely keep connections which would make it hard to filter between Russian and Chinese communications, but any directly from Russia could be subject to either massive slowdown or complete blocking.

    1. Re:Black List by Anonymous Coward · · Score: 0

      America first...

    2. Re:Black List by Anonymous Coward · · Score: 3, Interesting

      Don't throw stones inside a glass house. Stuxnet was perpetrated by the USA and Israel. If some other country did the same thing to the USA, it would be counted as an act of war and the USA has stated it would retaliate with any means it sees fit and not limit the response to "cyber" warfare.

    3. Re:Black List by ColdWetDog · · Score: 2

      We can put them on Facebook perhaps. That ought to do them in.

      --
      Faster! Faster! Faster would be better!
  4. Lethal vs Non Lethal Weapons? by Anonymous Coward · · Score: 0, Flamebait

    Do you recall the GOP's position before the election was to allow the sale of lethal weapons to Ukraine, and a Trump campaign representative convinced them to change it to "non-lethal" weapons?

    Whatever happened to that? I heard it was Paul Manasfort but the details were never filled in as to who that was.

    Also I know that they Trump's defence department approved $40 million in *sniper*rifles* to Ukraine, but then again they let sniper rifles be sold to drugged up teenagers with mental problems. Did they ever allow the anti tank missiles and anti aircraft defense systems the Ukrainians wanted to buy?

    Cisco vulnerable routers aside, there is an actual fighting zone there with actual bullets. It's not all just hacking, election rigging and hookers.

  5. power online? by Anonymous Coward · · Score: 0

    They the fuck is their electrical infrastructure online

  6. Looks good for CISCO by brucekeller · · Score: 1

    Cyber warfare seems to be becoming the new way to tax governments aside from climate change.

  7. Re:Ukraine Is Game To Cicso And Hackers by Anonymous Coward · · Score: 0

    Newmann....

  8. Russia failing to make friends by Anonymous Coward · · Score: 5, Insightful

    If Russia is trying to convince Ukraine to ally with Russia instead of the European Union, they are going about it in exactly the wrong way.

    1. Re:Russia failing to make friends by Anonymous Coward · · Score: 2, Insightful

      The Ukraine is just the example to all the others.

    2. Re:Russia failing to make friends by Anonymous Coward · · Score: 0

      Did they finally get a branch of the International Bank for Settlements?

    3. Re:Russia failing to make friends by oh_my_080980980 · · Score: 0, Troll

      This assumes Russia is behind this, which we do not know. NSA anyone.....

    4. Re:Russia failing to make friends by JaredOfEuropa · · Score: 2

      They are not trying to be convincing, they are bullying them. Perhaps not to ally with Russia, but most certainly to not align themselves any further with the EU or NATO

      --
      If construction was anything like programming, an incorrectly fitted lock would bring down the entire building...
    5. Re:Russia failing to make friends by Anonymous Coward · · Score: 0

      Last time i have checked Kosovo is still not part of Albania but independent. Autonomic Republic of Crimea joined Ukraine in 1992 based on diplomatic agreement between Crimea and Ukraine. So Crimea effectively broke the treaty. On top of it it made an instant referendum just after Russian invasion and joined Russia instead.
      I have no love for Ukraine - tbh i believe Crimea should be either Russian (but in proper internationally supervised referendum without any outside military stationing on the peninsula) or more like all Russians should go back to where they came to Crimea in 1944 and allow Crimean Tartars to return home.
      And if you really believe in "Russian made recordings" then ... well, you obviously do not understand how Russians FSB works. There are no Russians James Bonds there are just mostly journalists. The ones that makes "recordings".

    6. Re:Russia failing to make friends by Nidi62 · · Score: 4, Informative

      And the US position on Crimea's right to self determination is exactly the opposite of the US position on Kosovo's right to self determination.

      It's hardly "Self determination" when Russia buses in a bunch of Russian citizens and gives them the right to vote in the Crimea right before the election. Next you'll tell me the "separatists" in the Donbass just happened to find a bunch of Russian tanks and air defense systems lying around in barns.

      --
      The only thing necessary for evil to triumph is for it to be pitted against a slightly greater evil
    7. Re:Russia failing to make friends by Anonymous Coward · · Score: 2, Informative

      Ukraine is probably beyond their modern and rather peaceful divide and conquer strategy through information warfare at this point. That strategy works great in a time of relative peace, where you can make people sympathize with your side. But when you're already in a state of (proxy) war and have one side directly blaming the other for people's deaths on your doorstep other measures may be more appropriate on top of information warfare.
      And cyberwarfare seems to be a smart way of fighting since it does not expose your assets to greater risks of losing them in the process. Your soldiers are pretty safe while the havoc you may cause will harm your opponent.

    8. Re:Russia failing to make friends by Rick+Schumann · · Score: 2

      It's only the 'wrong way' if Russia/Putin was trying to 'convince' them of something. If you look at it from the perspective of 'Putin's plans to build USSR v2.0 via military conquest', then it looks exactly the way you'd expect it to.

    9. Re:Russia failing to make friends by Kjella · · Score: 3, Insightful

      On the contrary, an ongoing territorial dispute may be the best way to lock Ukraine in a stalemale, the way Cyprus had the EU stalled and like China and Taiwan are today. Russia has been losing allies since the 90s, back then the dividing line ran through Germany now they've lost pretty much all of Eastern Europe from the Baltics in the north to the Slavic countries in the south and the western sphere of influence has been crawling eastwards into ex-Soviet territory. Maybe the country was divided when the unrest started but I think in a few years Russia would be holding the short end of that stick anyway.

      A full membership in EU/NATO would put them right at Putin's doorstep. Not just the proximity to Moscow, Ukraine is big both in terms of territory and manpower while Crimea is absolutely essential to Russia's navy. Maybe this will push the people in a pro-western direction but formally this makes Ukraine a hot potato because either you acknowledge their full territory which would make you a party to the conflict or you de facto recognize that Russia has taken it and isn't going to give it back, both of which are politically untenable. Even if it's not a hot conflict it can potentially stall things for decades and if anyone gets too cozy I'm sure the unrest will flare up for reasons "unknown".

      I think Putin got all he could reasonably hope for, maybe he was hoping for a massive overreaction so he could send Russian tanks all the way to Kiev to protect the Russian minority but I doubt it as it would have been really messy. The Ukrainian response was also clearly limited to avoid provoking an all-out war with Russia, they certainly could have struck back harder. As for Putin, how many allies does he have left to lose? There's Belarus that he got in his pocket, he's supporting a few whack jobs down in the Middle East but as a military and economic bloc he's pretty lonely unless he gets friendly with China. I think he just wants it to stop before Russia has their own Euromaidan...

      --
      Live today, because you never know what tomorrow brings
    10. Re:Russia failing to make friends by Anonymous Coward · · Score: 0

      Actually Russia just needs to destabilize Ukraine. Stalin murdered millions and relocated many more then replaced them with Russians. Putin already pulled this shit in Crimea and it worked, he has been working in Ukraine for as long & has managed to undermine the government and burdened the people living there all in an effort to take control of the nation again & claim it was ways part of Russia.

    11. Re:Russia failing to make friends by guacamole · · Score: 1

      What sort of alternative reality are you living in? The majority of Crimean population are ethnic Russians. The Russian federation did not need to bus anyone to win the referendum there. And this is why neither Ukraine or USA would ever agree to a pieaceful resolution of the Crimean dispute through a internationally recognized referendum because it's simple as 1-2-3-4 that the Crimeans will vote for union with Russia again and again.

    12. Re:Russia failing to make friends by avgapon · · Score: 0

      To start with, most of Ukraine military bases were in the west of country, not the east. That's the legacy from the USSR times. Care to name at least one base where tanks or MLRS-s could be captured? And also compare that to the first reported uses by the "separatists" of MLRS-s and tanks.

    13. Re:Russia failing to make friends by avgapon · · Score: 0

      Also, stateless nations have rights to self determination, not arbitrary geographical areas. As an additional point, Kosovo is an independent state now. But Crimea was immediately absorbed by Russia.

    14. Re:Russia failing to make friends by Anonymous Coward · · Score: 0

      The Ukraine is just the example to all the others.

      So, it is just like Cuba then?

    15. Re:Russia failing to make friends by Anonymous Coward · · Score: 0

      Yes, they didn't need to. Stalin saw to it that there's a Russian majority in place when he deported other nationalities during his reign, mostly Tartars. Smart guy, thinking about the possible future of his country even long after he's gone. Or smart by Putin to realize the potential?

    16. Re:Russia failing to make friends by painandgreed · · Score: 1

      I think it's just how many allies does Putin have left to gain? Russia had nowhere near the reputation that the USSR had as a world power and foil to the USA. Now, after all the SSRs decided to flee, I think Putin sees a greater reputation in being foil to the USA once again and is building up on that, and constructing a sphere of influence based on being the center of anti-US interests once again. They have Belarus, joined up with Iran, playing off Turkish interests to include them and Syria. I'm surprised we don't hear Russia and North Korea in the same sentence more often.

      In theory, Russia could have just tried to join the EU and NATO itself even after the USSR fell and become part of greater Europe. However, as seen by the desertion of all the SSRs away, it shows that they are more the abusive uncle of Europe, never content to be equals, always wanting to be better and commanding. There are plenty of metaphors such as wishing to rather be a big fish in a small pond, or perhaps better to rule in Hell rather than what they see as serving in Heaven, which is probably the better one as I think they see themselves as the adversary of the USA and perhaps Europe.

    17. Re:Russia failing to make friends by Anonymous Coward · · Score: 0

      "The Russian federation did not need to"

      doesn't refute evidence that they did. Direct evidence. You're shilling with such a low ID. Saddening!

  9. Interesting by nehumanuscrede · · Score: 1

    While Cisco and others are warning the sky is about to fall, I didn't see in the article as to which vendor the routers / storage devices belong to.
    Nor any mention of how said malware got there in the first place.

    Cisco ? Juniper ? What ?

    Don't tell me the digital world is about to end, then leave off the details. :|

    1. Re:Interesting by oh_my_080980980 · · Score: 1

      But that would kill a good story....

  10. "Head of Ukraine's cyber police" LOL! by Anonymous Coward · · Score: 0

    You are just making these up now, right?

    1. Re:"Head of Ukraine's cyber police" LOL! by Dzimas · · Score: 3, Informative

      In English, the translation is "Department of cyber police." Serhiy Demedyuk is its head.

      In the USA, Douglas Maughan is Director, National Cyber Security Division of the Office of Cyber Security & Communications. Try saying that fast five times.

  11. Re:Do not believe Fake News! by CaffeinatedBacon · · Score: 1

    He'd give you the shirt of his back.

  12. Re:Ukraine is weak! by Anonymous Coward · · Score: 0

    Perhaps if they kept their nukes, they wouldn't have been invaded.

    North Korea already knows this.

  13. Wrong question. by Anonymous Coward · · Score: 2, Insightful

    How massive? So just how much damage is done when you're lying on the ground and someone kicks you in the face? How long did it take to recover from that? Was it worse than the other one kicking your crotch?
    If not, let's imply that it's ok to be kicked in the crotch.

    1. Re:Wrong question. by Anonymous Coward · · Score: 0

      of course its ok. whatever makes papa putin happy, right drumpf?

    2. Re: Wrong question. by Anonymous Coward · · Score: 0

      Hello Russian troll. I hope Putin fucks you in the ass with a thallium laced condom.

  14. Re: Confidence level is high! by Anonymous Coward · · Score: 1

    I see you aren't well versed in the topic of cyber security.

    In a field full of abstractions, routing, rerouting, and what not, it isn't very easy to have conclusive proof of anything. All you really have is "this matches the fingerprint of what we have seen before from this group" and "the motivations exist for this group to be the main potential actor".

    But keep requiring an impossible burden of proof if it helps sow doubt, Ivan.

  15. Re:Have no fear APK will be here shortly by Anonymous Coward · · Score: 0

    So now the rest of us have to put up with your shitposting in addition to his... way to go over to the dark side buddy!

  16. What really happened. by Anonymous Coward · · Score: 0

    Cisco Systems on Wednesday warned that hackers have infected at least 500,000 routers

    Translation: Cisco realized they screwed up and sold 500,000 routers to Ukranians without a secure default root password, figures they'll blame Russia for the impending breaches to follow.

  17. Re: Confidence level is high! by king+neckbeard · · Score: 2, Insightful

    The concern is that there are lots of political reasons to lie, and absent hard evidence, they can turn "uses off-the-shelf-malware and a tor exit node" into "high confidence." Basically, if we can't see the evidence ourselves, we should give an assessment from anybody with major government contracts zero confidence until we see direct evidence.

    --
    This is my signature. There are many like it, but this one is mine.
  18. Full technical Talos VPNFilter post by Khopesh · · Score: 4, Informative

    See also the full Cisco Talos post, New VPNFilter malware targets at least 500K networking devices worldwide, which has all of the technical details, including all indicators of compromise (IOCs).

    --
    Use my userscript to add story images to Slashdot. There's no going back.
  19. Russia will attack itself? Fake news! by Anonymous Coward · · Score: 0

    Ukraine is part of Russia in Trump's mind. Isolationist agree! See, no collusion! #MAGA

  20. San Marino by raymorris · · Score: 2

    I haven't seen any evidence that they are attacking San Marino.

  21. good by Anonymous Coward · · Score: 0

    if you use closed source routers you deserve to be attacked. fuck you.

    1. Re: good by Anonymous Coward · · Score: 0

      Lol. Even if you use open source. Unless you compile the source code yourself, you have no way of knowing if the code compiled matches what's on the router anyway

  22. Ukraine? by jbmartin6 · · Score: 1

    According to the article, Ukraine claimed the campaign was in preparation for an attack on Ukraine, not any security firm. Bit strange that the summary claims otherwise

    --
    This posting is provided 'AS IS' without warranty of any kind, implied or otherwise.
  23. Re: Confidence level is high! by Anonymous Coward · · Score: 0

    I'm sorry, but you really understand little about the world. When we understand history, especially of the US, we understand how governments manipulate citizens through fear so that they will support the military actions of their government. Perhaps you should put down the technical router manuals and open a history book because this strategy is not new. So yes, I am quite skeptical when I hear the drumbeat for war whether is is Vietnam, Iraq, Libya, or any other nation targeted for regime change. I suggest that you would benefit from a more skeptical approach as well.

  24. Same Cisco that puts in NSA backdoors by Anonymous Coward · · Score: 0

    in their own hardware. You may want to take what they say with a grain of salt.