• Home
  • News
  • Reviews
  • Digital technology
  • Cloud
  • Data analytics
  • Digital leaders
  • IoT
  • Opinion
  • Events
  • Whitepapers
  • Newsletters
  • Sign in
  • Events
    • Follow V3 Events

      Sign up to receive email alerts about our events

      Sign up
  • Whitepapers
    • V3resources 120x194
      Network Security Forensics For GDPR Compliance

      An effective network security forensics strategy can assist an organization in providing key compliance-related details as part of any post-incident GDPR investigation.

      Download
      V3resources 120x194
      10 ways to increase productivity with managed Office 365

      For businesses large and small, relying on a cloud-based collaboration and productivity suite such as Microsoft Office 365 is becoming the norm. Enhancing productivity in your organisation is vital to get ahead in 2017 - and using Office 365 can help, if it's used right...

      Download
      Find whitepapers
      Search by title or subject area
      View all whitepapers
  • Data Strategy Spotlight
  • Sign in
  •  
    •  

      You are currently accessing V3 .co.uk via your Enterprise account.

      Personalise your on site experience

      Download and use the apps

      Access your subscription from outside of the office

      Get relevant news and insight straight to your inbox

      • Sign in
     
      • Newsletters
      • Account details
      • Contact support
      • Sign out
     
  • Follow us
    • RSS
    • Twitter
    • Newsletters
    • Facebook
    • YouTube
  • Register
  • News
  • Reviews
  • Digital technology
  • Cloud
  • Data analytics
  • Digital leaders
  • IoT
  • Opinion
 
  •  

    You are currently accessing V3 .co.uk via your Enterprise account.

    Personalise your on site experience

    Download and use the apps

    Access your subscription from outside of the office

    Get relevant news and insight straight to your inbox

    • Sign in
 
    • Newsletters
    • Account details
    • Contact support
    • Sign out
 
V3.co.uk
  • Security

Microsoft blocks Russian 'Fancy Bear' attempt to phish Congress in run-up to US mid-term elections

Microsoft seizes control of phishing sites linked with Russian state hackers

Microsoft blocks Russian 'Fancy Bear' attempt to phish Congress in run-up to US mid-term elections
Hackers and other online ne'er do wells are known for wearing leather gloves while hatching their dastardly schemes
  • V3 Newsdesk
  • 21 August 2018
  • Tweet  
  • Facebook  
  •  
  •  
  • Send to  
0 Comments

MIcrosoft claims to have stopped a new attempt by hackers traced to the Russian state to interfere in the upcoming mid-term elections in the US.

The intervention came before the first attacks, intended to phish for user names and passwords of Congressmen and think tanks, were even launched. 

Microsoft believes that the phishing sites are linked to Russian state hackers dubbed Fancy Bear.

The company claims that the group was targeting two politically right-of-centre think tanks in particular. Microsoft claims that the group had designed their own web pages for the two think tanks, which mimic their design, and were planning on running a phishing campaign to net user names and passwords.

Three other fake domains were designed to look as if they belonged to the US Senate, the company added.

According to Brad Smith, Microsoft's president and chief legal officer, "Microsoft's Digital Crimes Unit (DCU) successfully executed a court order to disrupt and transfer control of six internet domains created by a group widely associated with the Russian government and known as Strontium, or alternatively Fancy Bear or APT28."

He continued: "We have now used this approach 12 times in two years to shut down 84 fake websites associated with this group. Attackers want their attacks to look as realistic as possible and they therefore create websites and URLs that look like sites their targeted victims would expect to receive email from or visit."

The internet domains that Microsoft seized were:

  • my-iri.org
  • hudsonorg-my-sharepoint.com
  • senate.group
  • adfs-senate.services
  • adfs-senate.email
  • office365-onedrive.com

Smith stressed that there was no evidence that these domains have been used in any attacks so far, but revealed that it has been actively monitoring "domain activity with Senate IT staff the past several months, following prior attacks we detected on the staffs of two current senators"

Smith used the news to announce that Microsoft would be expanding its "Defending Democracy Program with a new initiative called Microsoft AccountGuard".

This will "provide state-of-the-art cybersecurity protection at no extra cost to all candidates and campaign offices at the federal, state and local level, as well as think tanks and political organizations we now believe are under attack. The technology is free of charge to candidates, campaigns and related political institutions using Office 365".

Earlier this year, Trend Micro warned that the US Senate was being targeted by Russia's Fancy Bear group, also in a phishing campaign. 

Computing Cloud and Infrastructure Live 2018 logo

Computing's Cloud & Infrastructure Summit Live returns on Wednesday 19 September, featuring panel discussions with end-users, strategic and technical streams and a session with guest speaker Inma Martinez. The event is FREE to qualifying IT leaders and senior IT pros, but places are going fast. Register now!

Further reading

  • Security
Apple fanboy hacks company network - saves purloined files in folder called 'hacky hack hack'
  • 17 Aug 2018
  • Security
IAAF cracked by Russia-linked APT28 'Fancy Bear' hackers
  • 03 Apr 2017
  • Security
Microsoft blames Russian 'Fancy Bear' hackers for exploiting Windows flaw
  • 02 Nov 2016
  • Security
Fancy Bear Russian hacking group turns X-Agent Trojan against macOS users
  • 15 Feb 2017
  • Tweet  
  • Facebook  
  •  
  •  
  • Send to  
  • Topics
  • Security
  • Microsoft
  • fancy bear
  • Brad Smith
  • Russia
  • Strontium
  • APT28

V3 Latest

First plant to grow on the Moon, err, dies
First plant to grow on the Moon, err, dies

Cotton seedling freezes to death as Chang'e-4 shuts down for the Moon's 14-day lunar night

  • Communications
  • 18 January 2019
Fortnite news and updates: Fortnite made $2.4bn in 2018, according to SuperData
Fortnite news and updates: Fortnite made $2.4bn in 2018, according to SuperData

Fortnite easily out-earns PUBG, Assassin's Creed Odyssey and Red Dead Redemption 2 in 2018

  • Software
  • 18 January 2019
Japanese firm sends micro-satellites into space to deliver artificial meteor showers on demand
Japanese firm sends micro-satellites into space to deliver artificial meteor showers on demand

Meteor showers as a service will be visible for about 100 kilometres in all directions

  • Communications
  • 18 January 2019
Saturn's rings only formed in the past 100 million years, suggests analysis of Cassini space probe data
Saturn's rings only formed in the past 100 million years, suggests analysis of Cassini space probe data

New findings contradict conventional belief that Saturn's rings were formed along with the planet about 4.5 billion years ago

  • Communications
  • 18 January 2019
Back to Top
  • Contact
  • Marketing solutions
  • Enterprise IT Events
  • About
  • Terms & conditions
  • Privacy policy
  • RSS
  • Twitter
  • Newsletters
  • Facebook
  • YouTube

© Incisive Business Media (IP) Limited, Published by Incisive Business Media Limited, New London House, 172 Drury Lane, London WC2B 5QR, registered in England and Wales with company registration numbers 09177174 & 09178013

Digital publisher of the year
Digital publisher of the year 2010, 2013, 2016 & 2017