U.S. Charges Russia GRU Intelligence Officers for notorious attacks, including NotPetyaSecurity Affairs



The U.S. DoJ introduced expenses in opposition to six Russian intelligence officers for his or her position in a number of main cyberattacks carried out over the past years.

The U.S. Division of Justice introduced expenses in opposition to six members of Russia’s GRU army intelligence company for his or her alleged position in a number of main cyberattacks performed over the previous years.

The defendants are Yuriy Sergeyevich Andrienko, aged 32, Sergey Vladimirovich Detistov, 35, Pavel Valeryevich Frolov, 28, Anatoliy Sergeyevich Kovalev, 29, Artem Valeryevich Ochichenko, 27, and Petr Nikolayevich Pliskin, 32.

The six Russian intelligence officers are believed to be members of the Russia-linked Sandworm APT group (aka Telebots, Iron Viking and Voodoo Bear).

In line with the indictment, the GRU officers had been concerned in assaults on Ukraine, together with the assaults aimed on the nation’s energy grid in 2015 and 2016 that employed the BlackEnergy and Industroyer malware.

US DoJ charged the lads with damaging protected computer systems, conspiracy to conduct laptop fraud and abuse, wire fraud, conspiracy to commit wire fraud, and aggravated id theft.

Authorities consultants linked the Russian APT group to main assaults, together with NotPetya, a hacking operation concentrating on elections in France in 2017, the assault in opposition to PyeongChang Winter Olympics that concerned the Olympic Destroyer malware, in addition to a sequence of assaults on Georgian corporations and authorities organizations.

“Their laptop assaults used a few of the world’s most damaging malware to this point, together with: KillDisk and Industroyer, which every induced blackouts in Ukraine; NotPetya, which induced almost $1 billion in losses to the three victims recognized within the indictment alone; and Olympic Destroyer, which disrupted hundreds of computer systems used to help the 2018 PyeongChang Winter Olympics.” reads the press launch revealed by the DoJ. “The indictment expenses the defendants with conspiracy, laptop hacking, wire fraud, aggravated id theft, and false registration of a website identify.”

Since November 2015 and till a minimum of in October 2019, the defendants and their co-conspirators had been concerned within the growth and deployment of damaging malware and took half in disruptive hacking marketing campaign actions,.

Beneath the listing overt acts for every defendant:

Defendant Abstract of Overt Acts
Yuriy Sergeyevich Andrienko ·      Developed parts of the NotPetya and Olympic Destroyer malware.
Sergey Vladimirovich Detistov ·      Developed parts of the NotPetya malware; and·      Ready spearphishing campaigns concentrating on the 2018 PyeongChang Winter Olympic Video games.
Pavel Valeryevich Frolov ·       Developed parts of the KillDisk and NotPetya malware.
Anatoliy Sergeyevich Kovalev ·       Developed spearphishing strategies and messages used to focus on:-       En Marche! officers;-       workers of the DSTL;-       members of the IOC and Olympic athletes; and-       workers of a Georgian media entity.
Artem Valeryevich Ochichenko ·       Participated in spearphishing campaigns concentrating on 2018 PyeongChang Winter Olympic Video games companions; and·       Carried out technical reconnaissance of the Parliament of Georgia official area and tried to achieve unauthorized entry to its community.
Petr Nikolayevich Pliskin ·       Developed parts of the NotPetya and Olympic Destroyer malware.

The FBI added the defendants to the Cyber’s Most Wished listing.

“The FBI has repeatedly warned that Russia is a extremely succesful cyber adversary, and the knowledge revealed on this indictment illustrates how pervasive and damaging Russia’s cyber actions actually are,” mentioned FBI Deputy Director David Bowdich.  “However this indictment additionally highlights the FBI’s capabilities.  We have now the instruments to analyze these malicious malware assaults, establish the perpetrators, after which impose dangers and penalties on them.  As demonstrated at the moment, we are going to relentlessly pursue those that threaten the USA and its residents.”

“For greater than two years we now have labored tirelessly to reveal these Russian GRU Officers who engaged in a worldwide marketing campaign of hacking, disruption and destabilization, representing essentially the most damaging and dear cyber-attacks in historical past,” mentioned Scott Brady, U.S. Lawyer for the Western District of Pennsylvania. “The crimes dedicated by Russian authorities officers had been in opposition to actual victims who suffered actual hurt. We have now an obligation to carry accountable those that commit crimes – irrespective of the place they reside and irrespective of for whom they work – with a purpose to search justice on behalf of those victims.”

U.S. Charges Russia GRU Intelligence Officers for notorious attacks, including NotPetyaSecurity Affairs

Pierluigi Paganini

(SecurityAffairs – hacking, intelligence)



Latest Posts