Advertisement

We need your help now

Support from readers like you keeps The Journal open.

You are visiting us because we have something you value. Independent, unbiased news that tells the truth. Advertising revenue goes some way to support our mission, but this year it has not been enough.

If you've seen value in our reporting, please contribute what you can, so we can continue to produce accurate and meaningful journalism. For everyone who needs it.

The security flaw allowed the hackers to access any version of Windows for PC or server. Niall Carson/PA Wire
Spying

Windows flaw allowed Russian hackers to spy on NATO

The flaw, dubbed ‘Sandworm’, allowed spies to gain access to computers using all versions of Windows for PCs and servers during the past five years.

HACKERS BASED IN Russia used a flaw in Microsoft Windows to spy on NATO, European governments and other organizations as far back as 2009, security researchers said Tuesday.

A report by the cybersecurity firm iSight Partners said the flaw dubbed “Sandworm” allowed the cyber spies to gain access to computers using all versions of Windows for PCs and servers during the past five years.

The researchers said Microsoft was notified of the vulnerability and was making a patch available on Tuesday.

The report said the team exploiting this flaw began operating in 2009, and stepped up its efforts in late 2013, as the crisis in Ukraine broke out.

The researchers said the targets included NATO, Ukrainian government organisations, Western European governments, energy and telecom companies in Europe and US academic institutions, but added that “visibility is limited and that there is a potential for broader targeting from this group.”

They noted that many of the attacks “have been specific to the Ukrainian conflict with Russia and to broader geopolitical issues related to Russia.”

According to a blog post by iSight, it’s not clear what data may have been stolen but that the broad range of attacks “virtually guarantees that all of those entities targeted fell victim to some degree.”

“We immediately notified targeted entities, our clients across multiple government and private sector domains and began working with Microsoft to track this campaign and develop a patch to the zero-day vulnerability,” iSight added.

It noted that NATO was targeted as early as December 2013, and that other attacks hit a Polish energy firm and French telecommunications company.

The cyberspying effort was referred to as Quedach by the security firm F-Secure, which described some elements of the campaign last month “but only captured a small component of the activities” and failed to identify use of the security flaw, according to iSight.

- © AFP, 2014

Read: Someone bought ebola.com and is trying to sell it off for €118,500 >

Read: Dropbox distances itself from claims that 7 million accounts were hacked >

Your Voice
Readers Comments
2
    Submit a report
    Please help us understand how this comment violates our community guidelines.
    Thank you for the feedback
    Your feedback has been sent to our team for review.