A report published by Symantec on Wednesday suggests malicious email campaigns have been used to gain entry into organizations located in the United States, Turkey, and Switzerland and cannot deny the possibility of other countries as well. According to the Symantec’s research team has discovered advanced hackers targeting energy companies in the United States and European energy companies in a cyber-espionage campaign that has in some cases successfully broken into the core systems that control the company’s’ operations.
During an interview, Eric Chien a cybersecurity researcher at Symantec said the cyber attacks are similar to the attacks in 2015 and have increased in frequency in April this year. It can possibly be work of foreign government and holds a resemblance to a hacking group named Dragonfly in the manner the attacks have been carried out. He further cautions saying, industrial firms including power providers and other utilities falling prey to a cyber attack which might be maximized in case of geopolitical conflict.
Further referring to an earlier attack carried out in June where the US government warned industrial firms about a hacking campaign targeting the nuclear and energy sectors, in an alert seen by Reuters mentioned that hackers sent a phishing email to harvest credentials targeting the nuclear and energy sectors. Chien feels the alerts might be referring to the same campaign Symantec has been tracking.
Chien claims that already dozens of American companies have been compromised at operational levels and if the hackers. Though some researchers choose to differ from Chien’s claims.
Robert M. Lee, the founder of U.S. critical infrastructure security firm Dragos Inc, feels the dragonfly connection to be weak. He said the hackers are far from the level of being able to turn off the lights, so there’s no alarmism needed. The Dragonfly group was active from 2011 to 2014 but went dormant as it was discovered by several cybersecurity firms exposing its attacks.
Symantec reported that the codes were written in multiple languages like Russian and French making it difficult to identify the attackers. Though it has not mentioned Russia in its report.
- Android Q Offers Additional Features To Carriers
- 6 Best Song Finder Apps For Android To Identify Songs By Tune
- Saavn and JioMusic Merge Into JioSaavn Value Of $1 Billion