US charges five Russian military hackers with targeting Ukraine’s government with destructive malware

Date:

Share post:


On Thursday, the U.S. Department of Justice accused five members of Russia’s military intelligence agency of hacking several Ukrainian government agencies, an unnamed U.S. government agency in Maryland, and computers belonging to 26 NATO countries, among other victims. 

The DOJ announced the indictment of the five members of Russia’s Main Intelligence Directorate, also known as GRU, and in particular its hacking Unit 29155. The indictment names Russian GRU colonel and commanding officer of cyber operations, Yuriy Denisov; lieutenants Vladislav Borovkov, Denis Denisenko, Dmitriy Goloshubov and Nikolay Korchagin; and a civilian co-conspirator Amin Sitgal, who was previously indicted for some of the same crimes. 

Prosecutors allege that the six indicted individuals were behind the WhisperGate cyberattack, an operation that was designed to appear like a ransomware attack on the Ukrainian government, but was actually a destructive attack that would make the targeted computers unusable. The Russian government has been accused of launching WhisperGate in support of its full-scale invasion of Ukraine in February of 2022. 

According to the indictment, Denisov, Deniskno, Korchagin, Goloshubov, and Borovkov, and other unnamed individuals planned meetings at Cafe Shokoladnitsa in the Sofia Shopping Center in Moscow. The indictment does not explain how the U.S. government was able to get information about these meetings, nor the picture of the suspects, but it suggests the authorities gained significant access to the hackers’ infrastructure. 

“The message is clear. To the GRU and to the Russians: we are onto you, we penetrated your systems. The FBI, the Department of Justice will be relentless in pursuing you, so you better pay attention to the fact that we have gotten to you, and we are in your systems,” Matt Olsen, the U.S. Assistant Attorney General for National Security, said during a press conference announcing the indictments.

The indictment included details about the six Russian’s cyber operations, as well as a group picture of four of the lieutenants, and one of general Denisov.

GRU lieutenants Denisenki, Kordchagin, Goloshubov, Borovkov (Image: Department of Justice)

The six Russians are accused of hacking several government and civilian targets in Ukraine over the last couple of years, including the Ministry of Internal Affairs, State Treasury, Judiciary Administration, several other government departments, and the state-owned Ukrainian railways. 

Around October 2022, the six allegedly hacked what the indictment only described as the transportation infrastructure of “a Central European Country.” As previously reported, the timing of this attack suggests it was the cyberattack against Denmark, which caused delays and outages across the country’s train network, according to the indictment. 

Contact Us

Do you have more information about these attacks against Ukraine and other targets? Or information about the GRU’s Unit Unit 29155 and its cyberattacks? From a non-work device, you can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, or via Telegram and Keybase @lorenzofb, or email. You also can contact TechCrunch via SecureDrop.

During a press conference, U.S. government representatives declined to specify which U.S. agency based in Maryland was allegedly by the Russian hackers.

Also on Thursday, the FBI, U.S. cybersecurity agency CISA, the U.K’s National Cyber Security Centre, as well as European, Canadian, and Australian government agencies, released a joint cybersecurity advisory with technical details of Unit 29155’s operations. 

The FBI, which dubbed the international effort against the six alleged Russian hackers as Operation Toy Soldier, also published a poster with the hackers’ pictures soliciting tips that could lead to their arrest, and offered a reward of $10 million for each alleged hacker. 

In a post on the official X account for the Rewards for Justice bug bounty program following the indictments, the U.S. government referred to the hackers as having “baby faces.”



Source link

Lisa Holden
Lisa Holden
Lisa Holden is a news writer for LinkDaddy News. She writes health, sport, tech, and more. Some of her favorite topics include the latest trends in fitness and wellness, the best ways to use technology to improve your life, and the latest developments in medical research.

Recent posts

Related articles

Bill to ban social media use by under-16s arrives in Australia’s parliament

Legislation to ban social media for under 16s has been introduced in the Australian parliament. The country’s...

Lighthouse, an analytics provider for the hospitality sector, lights up with $370M at a $1B valuation

Here is yet one more sign of the travel industry’s noticeable boom: a major growth round for...

DOJ: Google must sell Chrome to end monopoly

The United States Department of Justice argued Wednesday that Google should divest its Chrome browser as part...

WhatsApp will finally let you unsubscribe from business marketing spam

WhatsApp Business has grown to over 200 million monthly users over the past few years. That means there...

OneCell Diagnostics bags $16M to help limit cancer reoccurrence using AI

Cancer, one of the most life-threatening diseases, is projected to affect over 35 million people worldwide in...

India’s Arzooo, once valued at $310M, sells in distressed deal

Arzooo, an Indian startup founded by former Flipkart executives that sought to bring “best of e-commerce” to...

OpenAI accidentally deleted potential evidence in NY Times copyright lawsuit

Lawyers for The New York Times and Daily News, which are suing OpenAI for allegedly scraping their...

Hyundai reveals the Ioniq 9, its biggest EV to date

Hyundai revealed Wednesday the new Ioniq 9, an all-electric three-row SUV — and its largest EV to...