Print 5 comment(s) - last by inperfectdarkn.. on Jul 2 at 1:28 PM

The group has the ability to disrupt or damage energy supplies in targeted nations

A hacking group has launched a cyber-espionage campaign against western energy firms and the systems that power the electric grid, according to a new report from Symantec

The hacking group -- called Dragonfly -- compromised several important organizations for intelligence purposes, said the report. The main targets were energy grid operators, petroleum pipeline operators, electricity generation firms and industrial equipment providers for the energy sector in the U.S., Spain, France, Italy, Germany, Turkey and Poland.

Alarmingly, Dragonfly could have done much more damage had it used its full sabotage capabilities, such as disrupt (or even damage) energy supplies in targeted nations.

Dragonfly is reportedly well resourced, using two key pieces of malware in its attacks -- both of which are remote access tool (RAT) type malware.
RAT malware provides the attackers with both access and control of compromised computers. 
Dragonfly prefers a malware tool called Backdoor.Oldrea, which acts as a backdoor for the attackers on to the victim’s computer. Once installed on a victim’s computer, Oldrea collects system information and lists of files, programs installed, and root of available drives. This data is then written to a temporary file in an encrypted format before being sent to a remote command-and-control (C&C) server controlled by the attackers. 

See the Dragonfly? [SOURCE: Symantec]

Dragonfly also favors a malware tool called Trojan.Karagany, which is capable of uploading stolen data, downloading new files and running executable files on an infected computer. 

Symantec's report said that the majority of computers compromised by the attackers were infected with Oldrea, while Karagany was only used in around 5 percent of infections.

Dragonfly reportedly used methods of attack like email campaigns, compromised legitimate software packages and watering hole attacks.

Protecting energy companies and the grid is a high priority. Back in February 2013, it was revealed that the U.S. Department of Energy (DOE) was hacked, which resulted in the "unauthorized disclosure of employee and contractor Personally Identifiable Information." No confidential information was stolen.

The DOE later released a letter promising to tighten security. It said it was deploying new tools both to protect assets on its servers and to monitor activity for signs of trouble. 

Source: Symantec

Comments     Threshold

This article is over a month old, voting and posting comments is disabled

Bloody Monday
By McSwaggerD on 7/1/2014 4:52:31 PM , Rating: 2
This remind me of a manga I read a few months back called Bloody Monday

Another crazy conspiracy theory...
By theaerokid on 7/1/14, Rating: -1
RE: Another crazy conspiracy theory...
By espaghetti on 7/1/2014 3:45:40 PM , Rating: 2
If you're trying to make this a right vs left argument, you are missing the point. If someone tells you that you left your window open and there is a storm coming, you go close your window.

By coburn_c on 7/1/2014 4:41:00 PM , Rating: 3
Nah nah nah, you tell at your neighbor for driving an SUV because global warming causes rain.

By inperfectdarkness on 7/2/2014 1:28:00 PM , Rating: 1
So watching Die-Hard 4, and the "Fire Sale" didn't make you think twice about the potential of it actually happening?

I mean, sure ridiculous movie, but the concept isn't far fetched. The USA has SERIOUSLY antiquated systems in charge of vital networks. That's not political at all.

"I mean, if you wanna break down someone's door, why don't you start with AT&T, for God sakes? They make your amazing phone unusable as a phone!" -- Jon Stewart on Apple and the iPhone
Related Articles
U.S. DOE: We Got Hacked
February 5, 2013, 3:56 PM

Copyright 2016 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki