Saturday

26th May 2018

EU names China and Russia as top hackers

  • China was 'the top attacking country' on denial of service attacks (Photo: SimonQ錫濛譙)

Beware of opening emails entitled 'Official Data Breach Notification' or 'UPS Label Delivery' if you are a CEO, the EU's cyber-defence agency, Enisa, warned on Monday (15 January).

Those subject headings were the most popular sent in fake or 'phishing' emails that installed malware on victims' computers in 2017, along with 'IT Reminder: Your Password Expires', 'Please Read Important from Human Resources', and 'All Employees: Update your Healthcare Info'.

Dear EUobserver reader

Subscribe now for unrestricted access to EUobserver.

Sign up for 30 days' free trial, no obligation. Full subscription only 15 € / month or 150 € / year.

  1. Unlimited access on desktop and mobile
  2. All premium articles, analysis, commentary and investigations
  3. EUobserver archives

EUobserver is the only independent news media covering EU affairs in Brussels and all 28 member states.

♡ We value your support.

If you already have an account click here to login.

  • Russian cyber espionage groups targeted Norwegian and Dutch ministries (Photo: Kelly)

The Greece-based EU agency noted in its annual report that cyber criminals out to steal money were the main "threat agent" who were "responsible for at least two-thirds of the incidents registered".

It said phishing "was reportedly responsible for 90 to 95 percent of successful attacks worldwide" and that the most sophisticated attacks were aimed at CEOs of large companies.

"Insiders" - personnel inside companies or government agencies who stole data - were the second biggest threat agent.

But Enisa noted that nation states were also out to steal information or to blackmail victims, using cyber-espionage, ransomware, malware, botnets, and other tricks.

"Nation states have become the third most active threat agent group with over 20 percent of incidents," it said, adding that "Given the advanced capabilities of this group, performed attacks are often difficult to identify and defend. This means that it is very likely that the actual activity of this group may be much higher".

It named China and Russia several times in its study.

China, India, and Russia were the three most "botnet infected countries", it said, referring to automated internet accounts used to send out spam, malware, denial of service attacks, and other malicious tricks.

The EU report said China was "the top attacking country" on denial of service attacks, which paralyse target systems by flooding them with data. It said 60 percent of all such attacks came from "China's army of hackers" and that 90 percent of them targeted US entities.

Attackers could hire botnet hordes on some Chinese sites "that even include dashboards showing the number of attacks carried out and the number of online bots" available the report said.

They could also rent "exploit kits", software designed to find security loopholes in users' systems, for up to $2,000 a month, on underground websites that offered online "support to both Russian and English speaking clients".

The EU report named three Chinese and Russian cyber-espionage groups - APT17389, APT28387, and APT29388 - as being among the most active and dangerous last year.

It said the China-based APT17389 group conducted "network intrusions against US government entities, the defence industry, law firms, information technology companies, mining companies, and non-government organisations".

It noted that APT28387, "a cyber-espionage group most probably sponsored by the Russian government" had tried to steal VIP guests' data in "hotels in at least seven European countries" in 2017.

The APT29388 group, "a Russian hacker group believed to be associated with Russian intelligence", had targeted Dutch and Norwegian government ministries.

"Understanding the key cybersecurity threats that the EU must respond to and the way in which they are evolving is essential if we are to successfully protect the cyberspace, the key enabler of the EU digital single market," Mariya Gabriel, the EU commissioner for the digital economy, said.

In other trends, Enisa noted that Mac users were increasingly coming under attack.

"Mac users were kept busy dealing with more malware in the second quarter [of 2017] than they had seen in all of 2016," it said.

The report noted the scale of the problem by citing one botnet network on Twitter, the US social media giant, that operated 350,000 fake accounts.

It also noted that individual companies held vast oceans of personal data that could be compromised in single attacks.

An attack on DU Group, a US web application company, last year got access to two billion "user phone numbers, names, and addresses" it said.

NetEase, a Chinese internet firm, let slip 1.2 billion email addresses and passwords that were later sold to other hackers on the web, while River City Media, a US online marketing company, lost 1.4 billion "names, addresses, IP addresses, and email addresses, as well as an undisclosed number of financial documents, chat logs, and backups", Enisa said.

Interview

EU 'underestimated' cyber-crime

"Cybercrime is growing much, much faster than I think we anticipated," the EU commissioner for security, Julian King, told EUobserver.

Opinion

The curious case of the Czech president's missing advisor

A Chinese business advisor to the Czech president has gone missing. The disappearance of one of the main conduits for Chinese investment into the Czech Republic leaves questions for Milos Zeman and his 'special relationship' with president Xi Jinping.

GDPR - a global 'gold standard'?

The new EU privacy rules are touted as a global 'gold standard' - but Mexico's former data commissioner warns some nations are far from ready.

New GDPR enforcer says complaints imminent

The European Data Protection Board is a new EU body tasked with enforcing the EU's privacy laws with powers to impose massive fines. Its head Andrea Jelinek told reporters complaints against companies are expected to be immediate.

Opinion

The dangers of resurgent nationalism in Greece

Virulent nationalism in Greece has been stirred up in the context of austerity and renewed negotiations with Macedonia. Recent attempts by the government to address the inequalities suffered by LGBT persons have also been met with a reactionary backlash.

News in Brief

  1. Italy set to pick eurosceptic finance minister
  2. UK foreign minister fooled by Russian pranksters
  3. Rajoy ally gets 33 years in jail for corruption
  4. Close race as polls open in Irish abortion referendum
  5. Gazprom accepts EU conditions on gas supplies
  6. Facebook tells MEPs: non-users are not profiled
  7. Commission proposes ending France deficit procedure
  8. UK households hit with Brexit income loss

Stakeholders' Highlights

  1. Counter BalanceEuropean Ombudsman requests more lending transparency from European Investment Bank
  2. Nordic Council of MinistersOECD Report: Gender Equality Boosts GDP Growth in Nordic Region
  3. Centre Maurits Coppieters“Peace and reconciliation is a process that takes decades” Dr. Anthony Soares on #Brexit and Northern Ireland
  4. Mission of China to the EUMEPs Positive on China’s New Measures of Opening Up
  5. Macedonian Human Rights MovementOld White Men are Destroying Macedonia by Romanticizing Greece
  6. Counter BalanceControversial EIB-Backed Project Under Fire at European Parliament
  7. Nordic Council of MinistersIncome Inequality Increasing in Nordic Countries
  8. European Jewish CongressEU Leaders to Cease Contact with Mahmoud Abbas Until He Apologizes for Antisemitic Comments
  9. International Partnership for Human RightsAnnual Report celebrates organization’s tenth anniversary
  10. Nordic Council of MinistersNordic Cooperation Needed on Green Exports and Funding
  11. Mission of China to the EUPremier Li Confirms China Will Continue to Open Up
  12. European Jewish CongressCalls on Brussels University to Revoke Decision to Honour Ken Loach

Stakeholders' Highlights

  1. Sustainable Energy Week 2018"Lead the Clean Energy Transition"- Register and Join Us in Brussels from 5 to 7 May
  2. EU Green Week 2018Green Cities for a Greener Future. Join the Debate in Brussels from 22 to 24 May
  3. Nordic Council of Ministers12 Recommendations for Nordic Leadership on Climate and Environment
  4. Macedonian Human Rights MovementOxford Professor Calls for an End to the Anti-Macedonian Name Negotiations
  5. ACCAPeople Who Speak-Up Should Feel Safe to Do So
  6. Mission of China to the EUProgress on China-EU Cooperation
  7. Nordic Council of MinistersWorld's Energy Ministers to Meet in Oresund in May to Discuss Green Energy
  8. ILGA EuropeParabéns! Portugal Votes to Respect the Rights of Trans and Intersex People
  9. Mission of China to the EUJobs, Energy, Steel: Government Work Report Sets China's Targets
  10. European Jewish CongressKantor Center Annual Report on Antisemitism Worldwide - The Year the Mask Came Off
  11. UNICEFCalls for the Protection of Children in the Gaza Strip
  12. Mission of China to the EUForeign Minister Wang Yi Highlights Importance of China-EU Relations