Malware of Ukrainian hacker supposedly used in Russian cyber attacks

Source : 112 Ukraine

What is believed to be a Russian government hacking group has been employing hackers to do their dirty work, then testing the malware in Ukraine, to ultimately use it in other countries
18:19, 16 August 2017

Ukrainian hacker known by the online name Profexer has given himself in to the Ukrainian Police, as his malware, without him knowing the purpose of the client, went on to be used in the D.N.C hack, as the New York Times report.

According to the NYT article, US intelligence believes that the hacking group known as Advanced Persistent Threat 28, also known as Fancy Bear, is operated by Russian military intelligence.

Related: Ukraine expects next cyber-attack at Independence Day

The group is almost impossible to trace, and it isn’t carrying out all of its work itself. They mostly outsource their tasks to freelancers, and the Ukrainian Profexer had been one of them, without knowing how his malware was going to be used, the article says.

Moreover, the NYT write that Ukraine has been the testing ground of Moscow’s cyber attacks for a while now. Traces of malware Sofacy, used in the presidential election in Ukraine in 2014, have been found later in the D.N.C. intrusion. During the Ukrainian election, the aim of the attack was to portray the country as almost fascist, which fits perfectly into the Russian propaganda.

The article also informs that at the moment the hacker is cooperating with the Ukrainian Police, and the FBI, which has sent a cyber-security expert to Kyiv.

Related: OSCE gives Ukrainian cyber police 194 units of counter-crime equipment

Система Orphus

If you find an error, highlight the desired text and press Ctrl + Enter, to tell about it

see more