러시아 연방보안국(FSB) 첩보 에이전시 계약자가 해킹 당해, 비밀 프로젝트가 노출

ment 7/22 '19 posted 뉴스 IT

• Nadezhda (영어로 Hope)는 러시아가 인터넷의 나머지 부분과 어떻게 연결되어 있는지 시각화하기위한 프로젝트입니다.

• 이 데이터 유출은 NSA 익스플로잇의 Vault 7 WikiLeaks 누수만큼 심각하지는 않지만 BBC는 러시아 스페셜 서비스 역사상 가장 큰 데이터 유출이라고 주장했습니다.

• 또한 BBC 러시아는 해커들이 계약자의 네트워크로부터 7.5TB의 데이터를 훔쳤다고 보도했습니다.

• BBC Russia는 2012 년에 Nautilus-S에 대한 연구가 시작되었다고 지적했습니다. 2 년 후인 2014 년 스웨덴 Karstad 대학의 학자가 Tor 트래픽을 해독하려고 시도했던 적대적 Tor 이탈 노드 사용에 대한 자세한 내용을 발표했습니다.

• 연구원은 25 개의 악성 서버를 확인했으며 그 중 18 개는 러시아에 있었고 Tor 버전 0.2.2.37을 실행했습니다.이 서버는 유출된 파일에 자세히 설명되어 있습니다.

• 해커들은 메이저 계약자로부터 7.5 테라 바이트의 데이터를 훔쳐 내면서 비밀 FSB 프로젝트를 통해 Tor 브라우징을 익명성을 없애도록 처리하고, 소셜 미디어를 긁어 냈으며, 국가가 인터넷을 다른 세계와 분리시키는 것을 도왔습니다.

• Nautilus-S란 무단 Tor 서버를 이용하여 Tor 트래픽을 반-익명화하기 위한 프로젝트.

• 해커는 회사 서버의 스크린 샷을 트위터에 게시 한 후 나중에 도난당한 데이터를 작년에 다른 FSB 계약자인 퀀텀을 털었던 다른 해킹 그룹 디지털 혁명(Digital Revolution)과 공유했습니다.

• Hope - 러시아 인터넷의 토폴로지와 다른 국가의 네트워크와의 연결을 조사하는 프로젝트.

• BBC는 그 침해를 "러시아 정보 기관 역사상 가장 큰 데이터 유출"이라고 묘사했습니다.

• Nautilus - 소셜 미디어 사용자 (Facebook, MySpace, LinkedIn 등)에 대한 데이터를 수집하는 프로젝트입니다.

• 러시아 연방 보안청 (FSB)의 계약자가 해킹 당하고 정보 기관을 위해 개발중인 비밀 프로젝트가 러시아 언론에 유출되었습니다.

• 이 연구는 러시아가 인터넷의 다른 부분에서 스스로를 격리할 수있는 '주권 인터넷'을 창설하려는 러시아의 노력의 일부입니다.

Russian FSB Intel Agency Contractor Hacked, Secret Projects Exposed [www.bleepingcomputer.com]

Hackers breach FSB contractor, expose Tor deanonymization project and more [www.zdnet.com]

Russia's Secret Intelligence Agency Hacked: 'Largest Data Breach In Its History' [www.forbes.com]

Is Russia Trying to Deanonymize Tor Traffic? [yro.slashdot.org]

Russia's Secret Intelligence Agency Hacked: 'Largest Data Breach In Its History' [www.forbes.com]

Massive trove of Russian spy-agency docs hacked from private sector contractor and passed onto media [boingboing.net]

Hackers broke into a contractor for Russia's spy agency [www.engadget.com]

Russia's Secret Intelligence Agency Hacked: 'Largest Data Breach In Its History' [www.forbes.com]

Hackers steal 7.5TB of data from Russian Intel Agency FSB's contractor [www.hackread.com]

newest replies popular replies

Open Wiki - Feel free to edit it. -

7/22 '19 answered

Russian FSB Intel Agency Contractor #hacked, Secret Projects Exposed https://t.co/2TSFReCqR3
— Secure Cyber (@Sec_Cyber) July 20, 2019

Hackers breach FSB contractor, expose Tor deanonymization project and more

SyTech, the hacked company, was working on research projects for the FSB, Russia's intelligence service.

H/T ⁦@I_Am_The_Wizard⁩ https://t.co/bzToV3k3g5
— Karol Cummins (@karolcummins) July 20, 2019

Hackers breach FSB contractor, expose Tor deanonymization projecthttps://t.co/PZ3EtGgxhP pic.twitter.com/Q2vnNA8fp7
— Catalin Cimpanu (@campuscodi) July 20, 2019

#OPSEC "BBC Russia, who received the full trove of documents" hope that the @bbcrussian journalists can protect their source(s) of hacked #FSB contractor documents and are not harassed by the #Putin regime because of this.https://t.co/3QELxruqnq pic.twitter.com/MtQc3rx38i
— Spy Blog ?? (@spyblog) July 20, 2019

Hackers breach FSB contractor, expose Tor deanonymization project and more https://t.co/26Z9sFWH01 via @ZDNet & @campuscodi
— Spy Blog ?? (@spyblog) July 20, 2019

FSB's Tor De-anonymization Project revealed by hackers. Anyone have the source material or interested in translating the Russian from the slides? https://t.co/lKvWauvlOP
— dark.fail (@DarkDotFail) July 20, 2019

Hackers breach FSB contractor, expose Tor deanonymization project https://t.co/XN7J8JkutK by @campuscodi
— ZDNet (@ZDNet) July 20, 2019

Hackers breach FSB contractor, expose Tor deanonymization projecthttps://t.co/kHDrTb4QQO pic.twitter.com/h2c29rTwmx
— Patrick (@TrickFreee) July 20, 2019

FSB data breach: "The hackers managed to steal 7.5 terabytes of data from a major contractor, exposing secret FSB projects to de-anonymize Tor browsing, scrape social media, and help the state split its internet off from the rest of the world." https://t.co/CVrYpUkqiO
— Troy Hunt (@troyhunt) July 20, 2019

This is oddly similar to the Shadow Brokers campaign. But this time targeting the FSB.

Could this be some sort of covert retaliation operation by the US? ? https://t.co/3GhAH6PzuJ pic.twitter.com/sllC8z8YPs
— x0rz (@x0rz) July 21, 2019

The 0v1ru$ group did what the US government would never dare do. They hacked Russian Intelligence systems, trolled them, and revealed their attempts to deanonymize Tor to the public thus making Tor safer for everyone. My kind of heros. https://t.co/yJIeIdZIOi
— Lance R. Vick (@lrvick) July 21, 2019

“FSB is Russia’s primary security agency with parallels with the FBI and MI5, but its remit stretches beyond domestic intelligence to include electronic surveillance overseas and significant intelligence-gathering oversight.” https://t.co/dUsvlkGmkW
— Barbara Malmet (@B52Malmet) July 21, 2019

"Hackers have breached SyTech, a contractor for FSB, Russia's national intelligence service, from where they stole information about internal projects the company was working on behalf of the agency -- including one for deanonymizing Tor traffic."
https://t.co/EFHVtThHvo pic.twitter.com/Y3RsVeml9o
— Matt Odell (@matt_odell) July 21, 2019

Nobody is safe, absolute security doesn’t exist: Hackers have breached SyTech, a contractor for FSB, from where they stole information about internal projects the company was working on behalf of the agency including one for deanonymizing Tor traffic. https://t.co/lwo2Y6OoQt
— Troels Oerting (@TroelsOerting) July 21, 2019

#SyTech breached - 7.5 TB of information about internal projects the company was working on behalf of the #FSB exposed -- including one for deanonymizing Tor traffic!https://t.co/th2BGSqbIx
— wallofsheep (@wallofsheep) July 20, 2019

Ruh-roh.... your Tor is no more. ???https://t.co/jlsOw9So43

If you aren’t clued in yet, EVERY country and EVERY intelligence service is getting their data dumped.

All those ”secret” tools are no secret anymore (think ShadowBrokers, OilRig, Vault7 leaks, etc)
— Luke Slytalker & The Force (@_Luke_Slytalker) July 21, 2019

Hackers breached SyTech, a contractor for Russia's national intelligence service, and stole information about internal projects the company was working on behalf of the agency: https://t.co/stcnyWA5sn
— Adam Levin (@Adam_K_Levin) July 20, 2019

There are not many opportunities to see details from russian secret services kitchen. FSB’s contractor SyTech was hacked and participated e.g. on: “Nautilus-S - a project for deanonymizing Tor traffic with the help of rogue Tor servers.” https://t.co/Z8LqQ4GpDL
— Martin Leskovjan (@LeskovjanMartin) July 21, 2019

Russian FSB Intel Agency Contractor Hacked, Secret Projects Exposed https://t.co/gZ6OPXFpoQ @robmay70 @archonsec @ChuckDBrooks @mclynd @DrJDrooghaag @AlaricAloor @Shirastweet @clarinette02 @MHcommunicate @m49D4ch3lly @mirko_ross @envescent
— Philippe Vynckier (@PVynckier) July 21, 2019

In Russia, Internet search you (look at "Nautilus")...https://t.co/hBhOAokEn6
— Steven Rambam (@StevenRambam) July 20, 2019

Russian FSB Intel Agency Contractor Hacked, Secret Projects Exposed https://t.co/jF7NUvSjwU
— Nicolas Krassas (@Dinosn) July 20, 2019

Russian spy agency #hacked. https://t.co/zl8GBEJi3M
— Robert Morton (@Robert4787) July 20, 2019

Russian FSB Intel Agency Contractor Hacked, Secret Projects Exposed. On July 13th, 2019, "Sytech" was claimed to be hacked by a hacking group named 0v1ru$... the group defaced the contactor's site to show an image of "Yoba-face" https://t.co/jnuHqYtpjr
— Treadstone 71 (@Treadstone71LLC) July 20, 2019

Russian FSB Intel Agency Contractor Hacked, Secret Projects Exposed https://t.co/pNUHn74795
— The Cyber Security Hub (@TheCyberSecHub) July 20, 2019

Massive trove of Russian spy-agency docs hacked from private sector contractor and passed onto mediahttps://t.co/JyG5iiOiQY pic.twitter.com/vV43DOrEfC
— Masque of the Red Death (@doctorow) July 21, 2019

Anonymous hackers hacked Russian hackers who were hacking hackers to de-anonymize anonymous hackers.https://t.co/BE0aJQSyCh
— Brett Shavers ? (@Brett_Shavers) July 21, 2019

Hackers steal 7.5TB of data from Russian Intel Agency FSB’s contractor

By Waqas

The hackers stole the data and shared it with another hacking group who was involved in the hacking of another FSB contractor. On Saturday, 13 July 2019, a group of hackers… https://t.co/a9deC4otvI
— Institute of Forensics and ICT Security (IFIS) (@forensicsIFIS) July 21, 2019

Hackers steal 7.5TB of data from Russian Intel Agency FSB's contractor https://t.co/fIvKOyHwxM @robmay70 @archonsec @ChuckDBrooks @mclynd @DrJDrooghaag @AlaricAloor @Shirastweet @clarinette02 @MHcommunicate @m49D4ch3lly @mirko_ross @envescent
— Philippe Vynckier (@PVynckier) July 21, 2019

permanent link

Reply with curations

Related

Featured