Microsoft Disrupts Russia-Linked Hacker Network That Posed Threat To Elections

3866

Microsoft has disrupted the operations of Trickbot, a massive Russia-linked malware network that could have indirectly posed a threat to the infrastructure of the upcoming presidential elections, the company said in a blog post

ФОТО: Shutterstock / Vitalii Stock

KEY FACTS

  • The Trickbot botnet is a network of nearly 1 million hijacked computers run by Russian-speaking criminals that Microsoft referred to as the world’s most “prolific distributors of ransomware.”
  • The company noted that the U.S. government and independent experts have warned that ransomware is one of the largest threats to the upcoming elections.
  • Ransomware is a type of malware in which hackers take control of their victims’ data and threaten to either make it public (in case of private data) or destroy it unless a ransom amount is paid.
  • Microsoft stated that adversaries may be able to use ransomware to infect computers used to store voter rolls or report election night results, leading to chaos at polling stations on Election Day.
  • Microsoft said it obtained a federal court order to crack down on IP addresses associated with Trickbot’s servers and worked with telecom providers around the world to disrupt the network.

TANGENT

Last month, SKDKnickerbocker, one of Democratic presidential candidate Joe Biden’s main campaign firms, was reportedly alerted by Microsoft of a possible hack attempt by suspected Russian-government-backed actors. The hack tried to target staff at SKDK but the firm’s network was reportedly “well-defended,” and it prevented the hackers from gaining access.

KEY BACKGROUND

During the weekend, the Washington Post reported that the U.S. Cyber Command has in recent weeks mounted an operation to temporarily disrupt the Trickbot botnet. The report noted that while the action may not permanently dismantle the network, it may distract them for a while as they seek to restore operations. It is unclear if Microsoft’s actions announced on Monday are separate from the Cyber Command’s operation or a part of it. Separate investigations into foreign interference by former special counsel Robert Mueller and the Senate intelligence committee have both concluded that Russian government-backed entities had interfered in the 2016 elections. In 2019, Mueller warned that Russia is likely to interfere again in 2020. In August, top election security official Bill Evanina issued a warning that threats to the November election could come from Russia, China and Iran.

Siladitya Ray, Forbes Staff

   Если вы обнаружили ошибку или опечатку, выделите фрагмент текста с ошибкой и нажмите CTRL+Enter

Орфографическая ошибка в тексте:

Отмена Отправить