The National Security Agency reveals Russian hacking tools |
The US National Security Agency (NSA) and the Federal Bureau of Investigation (FBI) have released an expanded public report on an advanced Russian hacking tool that gives Russia's digital arsenal a new face.
The National Security Agency and the FBI said: The Russian General Intelligence Service (GRU) is using a hacking tool called (Drovorub) to hack Linux computers.
Linux is an operating system that is widely used in server infrastructure.
Keppel wood, chief operations officer at the NSA's Cybersecurity Agency, said Linux systems are widely used in the Department of Homeland Security and Defense Systems and throughout the cybersecurity community. .
"If the network advocates take no action, malware can have a variety of effects," she added.
A former Western intelligence official said the public reports were unique based on direct recommendations from US authorities.
It links the National Security Agency and the Federal Bureau of Investigation (Druffrup) to a specific Russian intelligence team - the 85th Main Special Service Center (GTsSS), Military Unit 26165.
These agencies said GTsSS was linked to hackers known as APT28 or Fancy Bear who infiltrated the Democratic National Committee in 2016 and usually targeted defense, government and space companies. .
Steve Grobman, chief technology officer at McAfee Network Security, said: “The Drovorub tool has many features that an attacker can use to perform many different functions, such as: b- Stealing data and controlling remotely from the victim's computer.
This 45-page report by the National Security Agency and the FBI is the latest in a series of public reports issued by the US government aimed at exposing Russian piracy ahead of the 2020 US presidential election.
These agencies did not disclose the types of organizations threatened by (Droprop) or specific details of the victims (Droprop), but US officials said they had issued warnings to raise awareness about Russian state-sponsored infiltrators. .
Wood of the NSA said the NSA is sharing this information to counter the capabilities of GRU GTsSS, which continue to threaten the United States and its allies.
The announcement came nearly a year after the National Security Agency created a new Cybersecurity Division with the aim of sharing more information with the public about enemy threats.
In the past few weeks, the National Security Agency has launched a number of Russian campaigns, including efforts by Russian hackers to search for the Corona virus.