{"id":634366,"date":"2024-09-05T21:56:51","date_gmt":"2024-09-05T18:56:51","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/us-charges-five-russian-military-hackers-with-targeting-ukraines-government-with-destructive-malware\/"},"modified":"2024-09-05T21:56:51","modified_gmt":"2024-09-05T18:56:51","slug":"us-charges-five-russian-military-hackers-with-targeting-ukraines-government-with-destructive-malware","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/us-charges-five-russian-military-hackers-with-targeting-ukraines-government-with-destructive-malware\/","title":{"rendered":"#US charges five Russian military hackers with targeting Ukraine&#8217;s government with destructive malware"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_85 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a410c798de6b\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a410c798de6b\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/us-charges-five-russian-military-hackers-with-targeting-ukraines-government-with-destructive-malware\/#Contact_Us\" >Contact Us<\/a><\/li><\/ul><\/nav><\/div>\n<div>\n<p id=\"speakable-summary\" class=\"wp-block-paragraph\">On Thursday, the U.S. Department of Justice accused five members of Russia\u2019s military intelligence agency of hacking several Ukrainian government agencies, an unnamed U.S. government agency in Maryland, and computers belonging to 26 NATO countries, among other victims.\u00a0<\/p>\n<p class=\"wp-block-paragraph\">The DOJ <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.justice.gov\/opa\/pr\/five-russian-gru-officers-and-one-civilian-charged-conspiring-hack-ukrainian-government\">announced the indictment<\/a> of the five members of Russia\u2019s Main Intelligence Directorate, also known as GRU, and in particular its hacking Unit 29155. The indictment names Russian GRU colonel and commanding officer of cyber operations, Yuriy Denisov; lieutenants Vladislav Borovkov, Denis Denisenko, Dmitriy Goloshubov and Nikolay Korchagin; and a civilian co-conspirator Amin Sitgal, who was previously indicted for some of the same crimes.\u00a0<\/p>\n<p class=\"wp-block-paragraph\">Prosecutors allege that the six indicted individuals were behind the WhisperGate cyberattack, an operation that was designed to <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">app<\/a>ear like a ransomware attack on the Ukrainian government, but was actually a destructive attack that would make the targeted computers unusable. The Russian government <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.state.gov\/attribution-of-russias-malicious-cyber-activity-against-ukraine\/\">has been accused<\/a> of launching WhisperGate in support of its full-scale invasion of Ukraine in February of 2022.\u00a0<\/p>\n<p class=\"wp-block-paragraph\"><a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.justice.gov\/d9\/2024-09\/stigal_et_al._superseding_indictment.pdf\">According to the indictment<\/a>, Denisov, Deniskno, Korchagin, Goloshubov, and Borovkov, and other unnamed individuals planned meetings at Cafe Shokoladnitsa in the Sofia Shopping Center in Moscow. The indictment does not explain how the U.S. government was able to get information about these meetings, nor the picture of the suspects, but it suggests the authorities gained significant access to the hackers\u2019 infrastructure.\u00a0<\/p>\n<p class=\"wp-block-paragraph\">\u201cThe message is clear. To the GRU and to the Russians: we are onto you, we penetrated your systems. The FBI, the Department of Justice will be relentless in pursuing you, so you better pay attention to the fact that we have gotten to you, and we are in your systems,\u201d Matt Olsen, the U.S. Assistant Attorney <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/general\/\" data-internallinksmanager029f6b8e52c=\"3\" title=\"General\" target=\"_blank\" rel=\"noopener\">General<\/a> for National Security, said during a press conference announcing the indictments.<\/p>\n<p class=\"wp-block-paragraph\">The indictment included details about the six Russian\u2019s cyber operations, as well as a group picture of four of the lieutenants, and one of general Denisov.<\/p>\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"834\" height=\"311\" src=\"https:\/\/techcrunch.com\/wp-content\/uploads\/2024\/09\/Russia-GRU-Liutenants_1ad3e3.png?w=680\" alt=\"\" class=\"wp-image-2849772\" srcset=\"https:\/\/techcrunch.com\/wp-content\/uploads\/2024\/09\/Russia-GRU-Liutenants_1ad3e3.png 834w, https:\/\/techcrunch.com\/wp-content\/uploads\/2024\/09\/Russia-GRU-Liutenants_1ad3e3.png?resize=150,56 150w, https:\/\/techcrunch.com\/wp-content\/uploads\/2024\/09\/Russia-GRU-Liutenants_1ad3e3.png?resize=300,112 300w, https:\/\/techcrunch.com\/wp-content\/uploads\/2024\/09\/Russia-GRU-Liutenants_1ad3e3.png?resize=768,286 768w, https:\/\/techcrunch.com\/wp-content\/uploads\/2024\/09\/Russia-GRU-Liutenants_1ad3e3.png?resize=680,254 680w, https:\/\/techcrunch.com\/wp-content\/uploads\/2024\/09\/Russia-GRU-Liutenants_1ad3e3.png?resize=430,160 430w, https:\/\/techcrunch.com\/wp-content\/uploads\/2024\/09\/Russia-GRU-Liutenants_1ad3e3.png?resize=720,268 720w, https:\/\/techcrunch.com\/wp-content\/uploads\/2024\/09\/Russia-GRU-Liutenants_1ad3e3.png?resize=800,298 800w\" sizes=\"auto, (max-width: 834px) 100vw, 834px\"\/><figcaption class=\"wp-element-caption\">GRU lieutenants Denisenki, Kordchagin, Goloshubov, Borovkov (Image: Department of Justice)<\/figcaption><\/figure>\n<p class=\"wp-block-paragraph\">The six Russians are accused of hacking several government and civilian targets in Ukraine over the last couple of years, including the Ministry of Internal Affairs, State Treasury, Judiciary Administration, several other government departments, and the state-owned Ukrainian railways.\u00a0<\/p>\n<p class=\"wp-block-paragraph\">Around October 2022, the six allegedly hacked what the indictment only described as the transportation infrastructure of \u201ca Central European Country.\u201d As previously reported, the timing of this attack suggests it was <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.reuters.com\/article\/denmark-cybersecurity\/update-1-danish-train-standstill-on-saturday-caused-by-cyber-attack-idUSL1N31Z1E3\">the cyberattack against Denmark<\/a>, which caused delays and outages across the country\u2019s train network, according to the indictment.\u00a0<\/p>\n<div class=\"article-block block--callout alignright\">\n<h4 class=\"block--callout__title\"><span class=\"ez-toc-section\" id=\"Contact_Us\"><\/span>Contact Us<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>        Do you have more information about these attacks against Ukraine and other targets? Or information about the GRU\u2019s Unit Unit 29155 and its cyberattacks? From a non-work device, you can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, or via Telegram and Keybase @lorenzofb, or email. You also can contact TechCrunch via SecureDrop. <\/p><\/div>\n<p class=\"wp-block-paragraph\">During a press conference, U.S. government representatives declined to specify which U.S. agency based in Maryland was allegedly by the Russian hackers.<\/p>\n<p class=\"wp-block-paragraph\">Also on Thursday, the FBI, U.S. cybersecurity agency CISA, the U.K\u2019s National Cyber Security Centre, as well as European, Canadian, and Australian government agencies, <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.ic3.gov\/Media\/News\/2024\/240905.pdf\">released a joint cybersecurity advisory<\/a> with technical details of Unit 29155\u2019s operations.\u00a0<\/p>\n<p class=\"wp-block-paragraph\">The FBI, which dubbed the international effort against the six alleged Russian hackers as Operation Toy Soldier, also <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.fbi.gov\/wanted\/cyber\/gru-29155-cyber-actors\">published a poster with the hackers\u2019 pictures<\/a> soliciting tips that could lead to their arrest, and offered a reward of $10 million for each alleged hacker.\u00a0<\/p>\n<p class=\"wp-block-paragraph\">In a post <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/x.com\/RFJ_USA\/status\/1831739289173885095\">on the official X account<\/a> for the Rewards for Justice bug bounty program following the indictments, the U.S. government referred to the hackers as having \u201cbaby faces.\u201d<\/p>\n<\/div>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMN63nwsw68G3Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more like this article, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/technology\/\" target=\"_blank\" rel=\"noopener\">Technology<\/a><\/span> category.<\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/techcrunch.com\/2024\/09\/05\/us-charges-five-russian-military-hackers-with-targeting-ukraines-government-with-destructive-malware\/\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>On Thursday, the U.S. Department of Justice accused five members of Russia\u2019s military intelligence agency of hacking several Ukrainian government agencies, an unnamed U.S. government agency in Maryland, and computers belonging to 26 NATO countries, among other victims.\u00a0 The DOJ announced the indictment of the five members of Russia\u2019s Main Intelligence Directorate, also known as&#8230;<\/p>\n","protected":false},"author":1,"featured_media":634367,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/techcrunch.com\/wp-content\/uploads\/2024\/09\/Screenshot-2024-09-05-at-2.58.28PM.png?w=796","fifu_image_alt":"","footnotes":""},"categories":[18],"tags":[75269,101292,70375,20101,151658,4975,72287,70868,151659,151660],"class_list":["post-634366","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology","tag-us-government","tag-cyberattacks","tag-cybersecurity","tag-fbi","tag-gru","tag-russia","tag-security","tag-ukraine","tag-us-department-of-justice","tag-whispergate"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/634366","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=634366"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/634366\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/634367"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=634366"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=634366"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=634366"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}