18
Five Eyes Nations: Warn of Russian Cyber Attacks Against Critical Infrastructure
(thehackernews.com)
this post was submitted on 21 Apr 2022
18 points (82.1% liked)
Privacy
33560 readers
521 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Doesn't make any sense! Does Russia have any incentive at phishing your university? Why would they waste their scarce resources in time of hardships just to phish some university website?
Nation states and criminal organizations have considered universities a valuable target for a long time now. Easier than financial institutions and military targets, campus-wide networks, sensitive data on thousands and thousands of students, often lots of powerful hardware and even research equipment to botnet or abuse for processing/mining coing. Lots of value in owning them.
It could be a very important university to even be considered strategic for an opposing state, you also have to consider the fact that at the level of military strategy it can be a target to prevent culturally growing people.... That's why I'm not surprised. Then it is not only the university, it is the whole country that is affected.
Unless you wanted to make a strategic strike on the US's urban planning & policy capabilities, I'm afraid it wouldn't do much. We're a fairly large university, but we don't have a whole lot of mind share among the general population.
Everything you do is probably always an ulterior motive for your country, rest assured that every state makes money on it for everything you produce. Now it may be that the "phishing" that hit your university may actually be an isolated thing, but it may be hiding behind a plan that probably no one can know about.
I just learned that we do have at least one government grant that could mean sensitive information going through our systems. It's fully a defensive/hardening grant, but it could still make us a target.
You may have discovered one of the possible reasons why they attempted phishing. And I can confirm that most universities, as well as private companies, work with their country's government... So I'm not even surprised.
It's just retribution and harassment. From what I understand, the way it works is that the Russian state harbors criminals as long as they don't attack Russian targets. So in some cases, the malware they used literally checked for a Russian language pack on Windows and left the computer alone if it found that. They are essentially modern day privateers, harassing soft targets of an adversary.
I wouldn't be confident assuming "it’s just retribution", it's tactically useful. More detail in https://lemmy.ml/post/239272/comment/165414