Kübersõda ja häkkimine

Sõjaväelised erialad. Elutsükkel väljaõppest kuni reservist kustutamiseni. Nii nippidest kui ka relvadest/vahenditest.
Vasta
Kasutaja avatar
ruger
Liige
Postitusi: 19198
Liitunud: 04 Juul, 2009 12:29
Kontakt:

Re: Kübersõda ja häkkimine

Postitus Postitas ruger »

Põhja-Korea tegid küberrünnaku Lõuna-Korea tuumauuringutega tegeleva aatomienergia uurimise instituudi süsteemidesse
North Korean hackers conducted a cyberattack against a South Korean nuclear energy research organization last month and may have stolen valuable technology, a South Korean lawmaker said Friday.

The attackers targeted the state-run Korea Atomic Energy Research Institute. IP addresses linked to the "kimsuky" hacking unit within Pyongyang's Reconnaissance General Bureau were found to have connected to the organization's internal networks on May 14.

"Government agencies are currently assessing the damage," the institute told Nikkei.

The incident was disclosed by a lawmaker from the opposition People Power Party who sits on the National Assembly's Intelligence Committee.

"If nuclear power technology has been leaked to North Korea, the damage from this hack would be second only to the 2016 attack on our national defense network," the lawmaker said. In that incident, Pyongyang stole classified data including a strategy for a "decapitation" strike against North Korean leader Kim Jong Un.

https://asia.nikkei.com/Politics/Intern ... r-research
Ainus, mida me ajaloost õpime, on see, et keegi ei õpi ajaloost midagi.
Live for nothing or die for something.
Kui esimene kuul kõrvust mõõda lendab, tuleb vastu lasta.
EA, EU, EH
Kasutaja avatar
ruger
Liige
Postitusi: 19198
Liitunud: 04 Juul, 2009 12:29
Kontakt:

Re: Kübersõda ja häkkimine

Postitus Postitas ruger »

Järjekordne USA firmade häkkimine.
About 200 US businesses have been hit by a "colossal" ransomware attack, according to a cyber-security firm.

Huntress Labs said the hack targeted Florida-based IT company Kaseya before spreading through corporate networks that use its software.

Kaseya said in a statement on its own website that it was investigating a "potential attack".

Huntress Labs said it believed the Russia-linked REvil ransomware gang was responsible.

https://www.bbc.com/news/world-us-canada-57703836
Ainus, mida me ajaloost õpime, on see, et keegi ei õpi ajaloost midagi.
Live for nothing or die for something.
Kui esimene kuul kõrvust mõõda lendab, tuleb vastu lasta.
EA, EU, EH
Elagu Ukraina
Liige
Postitusi: 268
Liitunud: 04 Apr, 2017 1:39
Kontakt:

Re: Kübersõda ja häkkimine

Postitus Postitas Elagu Ukraina »

Imelik, et USA ei vasta vastulöökidega, kuigi neil pidavat olema eriti suured võimalused selleks. Või siis venelased lihtsalt ei avalikusta vasturünnakuid?
Turist 47
Liige
Postitusi: 4321
Liitunud: 08 Nov, 2014 18:30
Kontakt:

Terrorirünnakud Euroopa vastu

Postitus Postitas Turist 47 »

Massivne lunavara rünnak sunnib Rootslasi enda 800 kauplust, USA pinnal, sulgema.https://www.france24.com/en/americas/20 ... estigating

Laupäeval levis kogu ajaloos üks ajaloo suurimaid lunavara rünnakuid, sundides Rootsi Coopi toidukaupluste ketti sulgema kõik oma 800 kauplust, kuna ta ei saanud oma kassasid käsitseda.
Rünnaku ülesehitus olevat olnud ebatavaliselt keeruline. FBI toimetab.
https://twitter.com/chrispilz/status/14 ... estigating
Miki
Liige
Postitusi: 1322
Liitunud: 28 Jaan, 2015 16:26
Asukoht: puu otsas
Kontakt:

Re: Terrorirünnakud Euroopa vastu

Postitus Postitas Miki »

Kuna lunavara rünnakud on toimunud erinevate ettevõtetele üle maailma, väljaarvatud Venemaa siis järelduseks pakutakse autoriteks vene keelt kõnelevaid inimesi.
https://blog.group-ib.com/revil_raas
nimetu
Liige
Postitusi: 7574
Liitunud: 25 Mär, 2016 21:16
Kontakt:

Re: Kübersõda ja häkkimine

Postitus Postitas nimetu »

Kuna lunavara rünnakud on toimunud erinevate ettevõtetele üle maailma, väljaarvatud Venemaa siis järelduseks pakutakse autoriteks vene keelt kõnelevaid inimesi.

Aktiivsed on ka hiinlased ja põhja-korealased. Muidugi hiinlaste puhul on eesmärgiks pigem spionaaž kui lihtsalt lunaraha lunimine või kahju tekitamine. Ega see ei oleks ka nende puhul mõistlik, sest mine tea mida ameeriklased selle peale teha otsustaksid. USA doktriin liigub juba vaikselt samaväärsete karistusmeetmete rakendamise poole ju.
Miki
Liige
Postitusi: 1322
Liitunud: 28 Jaan, 2015 16:26
Asukoht: puu otsas
Kontakt:

Re: Kübersõda ja häkkimine

Postitus Postitas Miki »

Lunavara ründe taga siis ilmselgelt Venemaa. Millal küll võiks saada USa karikas täis, et korralik vastus anda?
Või polegi võimekust?
https://www.whitehouse.gov/briefing-roo ... -russia-2/
Kasutaja avatar
ruger
Liige
Postitusi: 19198
Liitunud: 04 Juul, 2009 12:29
Kontakt:

Re: Kübersõda ja häkkimine

Postitus Postitas ruger »

Väidetavalt on Venemaa taustaga kõige suurema kõlapinnaga krüpteerimisega tegelenud lunaraha grupeering kadunud või tegevuse (ajutiselt?)lõpetanud.
Russia’s most aggressive ransomware group disappeared. It’s unclear who made that happen.

Pilt
https://twitter.com/RALee85/status/1415012307676053509
https://www.nytimes.com/2021/07/13/us/p ... revil.html
Ainus, mida me ajaloost õpime, on see, et keegi ei õpi ajaloost midagi.
Live for nothing or die for something.
Kui esimene kuul kõrvust mõõda lendab, tuleb vastu lasta.
EA, EU, EH
Kasutaja avatar
dorpat
Liige
Postitusi: 158
Liitunud: 26 Aug, 2020 22:43
Asukoht: Tartu
Kontakt:

Re: Kübersõda ja häkkimine

Postitus Postitas dorpat »

ERR kirjutas:Iisraeli tehnoloogiafirma NSO on müünud autoritaarsetele valitsustele telefonipahavara, mille abil on jälitatud kümneid tuhandeid inimõigusaktiviste, ajakirjanikke, poliitikuid ja juriste mitmel pool maailmas, selgub lekkinud andmetest, mida ajalehe Guardian ja veel 16 väljaande osalusel on uuritud.


järgnevad valik linke. ilmselt tuleb järgnevatel päevadel sel teemal uudiseid igast uksest ja aknast.

Iisraeli ettevõte müüs autoritaarsetele valitsustele nuhkvara
https://www.err.ee/1608282537/iisraeli- ... e-nuhkvara

Revealed: leak uncovers global abuse of cyber-surveillance weapon
https://www.theguardian.com/world/2021/ ... up-pegasus

Israeli Spyware Maker Is in Spotlight Amid Reports of Wide Abuses
https://www.nytimes.com/2021/07/18/worl ... yware.html

Worldwide probe finds tech by Israel’s NSO Group targeted media, politicians
https://www.timesofisrael.com/worldwide ... liticians/

isiklikult ei peatuks mitte niiväga faktil, et nuhktooteid müüdi "pahadele riikidele" (relvad leiavad ikka tee klientideni), vaid et kes võiks selle lekke taga olla.

entusiastidest ökoterroristid sellise leveli häkkimisega tavaliselt toime ei tule. või tuli leke NSOst seespoolt. lõhnab pigem nagu suurte poiste liivakast.

ja natukene tehnilist ka:

Forensic Methodology Report: How to catch NSO Group’s Pegasus
https://www.amnesty.org/en/latest/resea ... s-pegasus/

aga kui tahta veidi rääkida nendest taskukohastest toodetest, siis mulle meeldib see olukord:
Two years ago the then UN special rapporteur on freedom of expression, David Kaye, called for a moratorium on the sale of NSO-style spyware to governments until viable export controls could be put in place. He warned of an industry that seemed “out of control, unaccountable and unconstrained in providing governments with relatively low-cost access to the sorts of spying tools that only the most advanced state intelligence services were previously able to use”.


naljakas. et kuniks ainult Meie teeme, siis on OK, aga kui teised ka hakkavad, siis pole enam OK? :lol:
nimetu
Liige
Postitusi: 7574
Liitunud: 25 Mär, 2016 21:16
Kontakt:

Re: Kübersõda ja häkkimine

Postitus Postitas nimetu »

Huvitav et alles nüüd suure kella külge pandi. Minu mälu järgi käisid jutud sellisest asjast juba aastaid tagasi. Ausalt öeldes, mind see ei üllata ega pane imestama. Kui teenusele on turgu, siis leidub ka pakkujaid.
Kasutaja avatar
dorpat
Liige
Postitusi: 158
Liitunud: 26 Aug, 2020 22:43
Asukoht: Tartu
Kontakt:

Re: Kübersõda ja häkkimine

Postitus Postitas dorpat »

nimetu kirjutas:Huvitav et alles nüüd suure kella külge pandi. Minu mälu järgi käisid jutud sellisest asjast juba aastaid tagasi. Ausalt öeldes, mind see ei üllata ega pane imestama. Kui teenusele on turgu, siis leidub ka pakkujaid.


jah, nõustun. kodanik Snowden lekked, FinFisher jmt oleks nagu ammu ununenud.

ja siis tullakse sellise jutuga:
https://maailm.postimees.ee/7296453/von ... tuvoetmatu
Euroopa Komisjoni president Ursula von der Leyen ütles täna, et Iisraeli tarkvarafirmat ja kuni 50 000 nutitelefoninumbrit puudutav nuhkvaraskandaal on täiesti vastuvõetamatu.


:dont_know:
Kasutaja avatar
ruger
Liige
Postitusi: 19198
Liitunud: 04 Juul, 2009 12:29
Kontakt:

Re: Kübersõda ja häkkimine

Postitus Postitas ruger »

Oli ju antud juhtumi puhul nii ministreid, peaministreid, kui ka riigipäid antud nuhkimistarkvara ohvriteks.
The numbers on the list are unattributed, but reporters were able to identify more than 1,000 people spanning more than 50 countries through research and interviews on four continents: several Arab royal family members, at least 65 business executives, 85 human rights activists, 189 journalists, and more than 600 politicians and government officials — including cabinet ministers, diplomats, and military and security officers. The numbers of several heads of state and prime ministers also appeared on the list.

https://www.washingtonpost.com/investig ... ellphones/
The Guardian and its media partners will be revealing the identities of people whose number appeared on the list in the coming days. They include hundreds of business executives, religious figures, academics, NGO employees, union officials and government officials, including cabinet ministers, presidents and prime ministers.

https://www.theguardian.com/world/2021/ ... up-pegasus
Ainus, mida me ajaloost õpime, on see, et keegi ei õpi ajaloost midagi.
Live for nothing or die for something.
Kui esimene kuul kõrvust mõõda lendab, tuleb vastu lasta.
EA, EU, EH
Kasutaja avatar
ruger
Liige
Postitusi: 19198
Liitunud: 04 Juul, 2009 12:29
Kontakt:

Re: Kübersõda ja häkkimine

Postitus Postitas ruger »

USA süüdistab Hiinat jaanuaris 2021 avastatud(ja märtsis 2021 avalikustatud) MS Exchange emaili serveri tarkvara vastases rünnakus.
The Biden administration and Western allies formally blamed China on Monday for a massive hack of Microsoft Exchange email server software and accused Beijing of working with criminal hackers in ransomware attacks and other cyber operations.

The announcements, though not accompanied by sanctions against the Chinese government, were intended as a forceful condemnation of activities a senior Biden administration official described as part of a “pattern of irresponsible behavior in cyberspace.” They highlighted the ongoing threat from Chinese government hackers even as the administration remains consumed with trying to curb ransomware attacks from Russia-based syndicates that have targeted critical infrastructure.

The broad range of cyberthreats from Beijing disclosed on Monday included ransomware attacks from government-affiliated hackers that have targeted victims — including in the U.S. — with demands for millions of dollars. U.S officials allege that China’s Ministry of State Security has been using criminal contract hackers who have engaged in cyber extortion schemes and theft for their own profit, officials said.

https://apnews.com/article/microsoft-ex ... d3fb059f35
Victims of a massive global hack of Microsoft email server software — estimated in the tens of thousands by cybersecurity responders — hustled Monday to shore up infected systems and try to diminish chances that intruders might steal data or hobble their networks.

The White House has called the hack an “active threat” and said senior national security officials were addressing it.

The breach was discovered in early January and attributed to Chinese cyber spies targeting U.S. policy think tanks. Then in late February, five days before Microsoft issued a patch on March 2, there was an explosion of infiltrations by other intruders, piggybacking on the initial breach. Victims run the spectrum of organizations that run email servers, from mom-and-pop retailers to law firms, municipal governments, healthcare providers and manufacturers.

https://apnews.com/article/technology-p ... adb94d468b
Ainus, mida me ajaloost õpime, on see, et keegi ei õpi ajaloost midagi.
Live for nothing or die for something.
Kui esimene kuul kõrvust mõõda lendab, tuleb vastu lasta.
EA, EU, EH
Kasutaja avatar
dorpat
Liige
Postitusi: 158
Liitunud: 26 Aug, 2020 22:43
Asukoht: Tartu
Kontakt:

Re: Kübersõda ja häkkimine

Postitus Postitas dorpat »

ruger kirjutas:Oli ju antud juhtumi puhul nii ministreid, peaministreid, kui ka riigipäid antud nuhkimistarkvara ohvriteks.

ok, see osa jäi märkamata kiirlugemisel.

huvitav mis siis sai, kui kahe erineva riigi võlli teineteist üles annavad jälgimiseks või sai premium teenusena end nö vabaks osta? :twisted:
Kasutaja avatar
ruger
Liige
Postitusi: 19198
Liitunud: 04 Juul, 2009 12:29
Kontakt:

Re: Kübersõda ja häkkimine

Postitus Postitas ruger »

Viimase telefonihäki teemadel siis pihta saanute hulgas Prantsuse president Macron, LAV-i president, Euroopa nõukogu president, Maroko kuningas, endine Mehhiko president ja WHO peadirektor
Political figures whose numbers appear in the list include:

The South African president, Cyril Ramaphosa, who appears to have been selected by Rwanda in 2019.

Emmanuel Macron, the French president, who appears to have been selected as a person of interest by Morocco in 2019. An Élysée official said: “If this is proven, it is clearly very serious. All light will be shed on these media revelations.”

Tedros Adhanom Ghebreyesus, the World Health Organization’s director general, who also appears to have been of interest to Morocco in 2019.

Saad Hariri, who resigned as prime minister of Lebanon last week and appears to have been selected by the UAE in 2018 and 2019.

Charles Michel, the president of the European Council, who appears to have been chosen as a person of interest by Morocco in 2019, when he was prime minister of Belgium.

King Mohammed VI of Morocco, who was selected as a person of interest in 2019, apparently by security forces in his own country.

Saadeddine Othmani, Morocco’s prime minister, who was also selected as a person of interest in 2018 and 2019, again possibly by elements within his own country.

Imran Khan, the prime minister of Pakistan, who was selected as a person of interest by India in 2019.

Felipe Calderón of Mexico, the former president. His number was selected in 2016 and 2017 by what is believed to have been a Mexican client during a period when his wife, Margarita Zavala was running for the country’s top political job.

Robert Malley, a longtime American diplomat who was chief negotiator on the US-Iran deal, and who appears to have been selected as a person of interest by Morocco in 2019. NSO has said its government clients are prevented from deploying its software against US numbers because it has been made “technically impossible”.

https://www.theguardian.com/world/2021/ ... oject-data
Ainus, mida me ajaloost õpime, on see, et keegi ei õpi ajaloost midagi.
Live for nothing or die for something.
Kui esimene kuul kõrvust mõõda lendab, tuleb vastu lasta.
EA, EU, EH
Vasta

Kes on foorumil

Kasutajad foorumit lugemas: Registreeritud kasutajaid pole ja 2 külalist