Cyberattack, suspected of Russians, affected thousands of computers in Germany | News from Germany about events in the world

A cyberattack on software maker Kaseya, whose software was used by the large Swedish supermarket chain Coop Sweden, as well as many small and medium-sized businesses around the world, could affect thousands of computers in Germany. This assessment was expressed on Sunday, July 4, by experts from the Federal Office for Security in Information Technology (BSI).

“One IT services company has already reported that it was attacked,” a BSI spokesman told Reuters, noting that the aforementioned company had thousands of clients, which could eventually also be affected by hacker attacks.

BSI expects that on Monday, July 5, they may begin to receive messages from companies affected by the cyber attack, which did not notice the breach of their systems until the beginning of the work week. The fact is that only enterprises operating in critical industries for the country’s infrastructure, such as power supply, are legally required to report hacker attacks against them.

Earlier it was reported that as a result of this hacker attack on the Kaseya company, 200 firms in the United States were affected.

Suspected: hacker group REvil

At the same time, no cases of such a large-scale damage to any company as the Coop supermarket chain in Sweden, forced to temporarily close all 800 branches, have not yet been recorded in Germany, the BSI said.

The Kaseya VSA software breach, which could have affected thousands of businesses around the world, was reported on the evening of July 2. The next day, July 3, Bloomberg reported with reference to computer security company Huntress Labs Inc. that a group from Russia called REvil could be behind the global hacker attack.

At the moment, experts believe that the attackers were only interested in the ransom for restoring the systems, and not the personal data of the clients of the affected companies.

See also:

Hack me completely: high-profile cyberattacks and data leaks in recent years
Personal data of German politicians appeared on the web
As it became known on January 4, at the end of 2018, links to personal data – including passport and credit cards – of 994 German politicians, actors, journalists, musicians appeared on Twitter. Already on January 6, a 20-year-old student of a gymnasium in Hesse was arrested on suspicion of burglary. According to the police, he spent a lot of time at the computer, but he has no special education.

Hack me completely: high-profile cyberattacks and data leaks in recent years
Russian “bears”
In recent years, news of hackers and cyberattacks has become commonplace. Often the authorship of the hacks is attributed to several groups of hackers – Cozy Bear (literally “cozy bear”, also known as APT29), Fancy Bear (“fashionable bear”, APT28) and Energetic Bear (“energy bear”), which are associated with the Russian special services. The evidence is indirect, but each time there are more and more of them.

Hack me completely: high-profile cyberattacks and data leaks in recent years
Attacks on the power grids of the USA and Germany
In the summer of 2018, it became known about the attacks of the Energetic Bear hacker group on the power grids of the United States and Germany. According to American intelligence agencies, in the United States, burglars have even reached the stage where they could turn electricity on and off and disable the flow of energy. In Germany, hackers managed to penetrate the networks of only a few companies before the German special services took control of the situation.

Hack me completely: high-profile cyberattacks and data leaks in recent years
USA accused GRUshnik of cyberattacks
On July 13, 2018, the US Department of Justice (in the photo – the office of the department in Washington) accused 12 Russian citizens of trying to interfere in the election of the American president in 2016. According to the investigation, the employees of the Main Intelligence Directorate (GRU) of the General Staff of the Russian Armed Forces participated in the hacking of the computer systems of the Democratic Party and the campaign headquarters of Hillary Clinton.

Hack me completely: high-profile cyberattacks and data leaks in recent years
USA and UK accused Russia of a large-scale cyberattack
On April 16, 2018, the FBI, the US Department of Homeland Security and the British Center for National Computer Security announced that Russian hackers attacked government agencies and private companies in an attempt to seize intellectual property and gain access to the networks of their victims. Australian Defense Minister Maryse Payne voiced similar accusations on the same day.

Hack me completely: high-profile cyberattacks and data leaks in recent years
Bad Rabbit hit Russia and Ukraine
The new Bad Rabbit virus hit the servers of several Russian media outlets on October 24. In addition, the hackers attacked several government agencies in Ukraine, as well as the systems of the Kiev metro, the Ministry of Infrastructure and the Odessa airport. Earlier, Bad Rabbit attacks were recorded in Turkey and Germany. Experts believe that the virus spreads in a manner similar to ExPetr (aka Petya).

Hack me completely: high-profile cyberattacks and data leaks in recent years
Cyberattack of the century
On May 12, 2017, it became known that tens of thousands of computers in 74 countries were subjected to a cyberattack of an unprecedented scale. The WannaCry virus encrypts data on computers, hackers promise to remove the lock for a ransom of $ 300 in bitcoins. Medical institutions in Great Britain, Deutsche Bahn in Germany, computers of the Ministry of Internal Affairs of the Russian Federation, the Investigative Committee and Russian Railways, as well as Spain, India and other countries were particularly affected.

Hack me completely: high-profile cyberattacks and data leaks in recent years
Petya virus
In June 2017, attacks by the powerful Petya.A virus were recorded around the world. He paralyzed the work of the servers of the Ukrainian government, the national post office, the Kiev metro. The virus has also affected a number of companies in the Russian Federation. Computers in Germany, Great Britain, Denmark, the Netherlands, and the USA were infected. There is no information about who was behind the spread of the virus.

Hack me completely: high-profile cyberattacks and data leaks in recent years
Attack on the Bundestag
In May 2015, it was discovered that the attackers had penetrated the internal computer network of the Bundestag using a malicious program (“Trojan”). IT experts found traces of the APT28 group in this attack. In favor of the Russian origin of the hackers was evidenced, among other things, by the Russian-language settings of the virus program and the time of their operations, which coincided with the Moscow office hours.

Hack me completely: high-profile cyberattacks and data leaks in recent years
Against Hillary
During the election race for the presidency of the United States, hackers twice gained access to the servers of the Democratic Party of candidate Hillary Clinton. American intelligence agencies and IT companies established that representatives of Cozy Bear were active in the summer of 2015, and in the spring of 2016 – Fancy Bear. According to the US intelligence services, the cyberattacks were sanctioned by senior Russian officials.

Hack me completely: high-profile cyberattacks and data leaks in recent years
Merkel’s party at gunpoint
In May 2016, it became known that the headquarters of the Christian Democratic Union (CDU) party of German Chancellor Angela Merkel had been hacked. IT specialists claimed that the Cozy Bear hackers tried to get access to the CDU databases using phishing (sending letters with links to sites that are indistinguishable from real ones), but the attempts were unsuccessful.

Hack me completely: high-profile cyberattacks and data leaks in recent years
Doping hack
In September 2016, the World Anti-Doping Agency (WADA) reported a breach in its database. The Fancy Bear group has posted on the Web documents with a list of athletes that WADA has allowed to use drugs from the prohibited list (therapeutic exceptions) in connection with the treatment of diseases. Among them were American tennis players Serena and Venus Williams and gymnast Simone Biles.

Hack me completely: high-profile cyberattacks and data leaks in recent years
500 million Yahoo accounts
In February 2017, the US Department of Justice filed charges of stealing data from more than 500 million Yahoo accounts against two FSB officers Dmitry Dokuchaev and Igor Sushchin. The cyberattack took place at the end of 2014. According to the prosecution, the FSB hired two hackers for this. Among the victims of the hack were Russian journalists, government officials from Russia and the United States, and many others.
Author: Ilya Koval