Tuesday

18th Jun 2019

EU names China and Russia as top hackers

  • China was 'the top attacking country' on denial of service attacks (Photo: SimonQ錫濛譙)

Beware of opening emails entitled 'Official Data Breach Notification' or 'UPS Label Delivery' if you are a CEO, the EU's cyber-defence agency, Enisa, warned on Monday (15 January).

Those subject headings were the most popular sent in fake or 'phishing' emails that installed malware on victims' computers in 2017, along with 'IT Reminder: Your Password Expires', 'Please Read Important from Human Resources', and 'All Employees: Update your Healthcare Info'.

Read and decide

Join EUobserver today

Support quality EU news

Get instant access to all articles — and 18 year's of archives. 30 days free trial.

... or join as a group

  • Russian cyber espionage groups targeted Norwegian and Dutch ministries (Photo: Kelly)

The Greece-based EU agency noted in its annual report that cyber criminals out to steal money were the main "threat agent" who were "responsible for at least two-thirds of the incidents registered".

It said phishing "was reportedly responsible for 90 to 95 percent of successful attacks worldwide" and that the most sophisticated attacks were aimed at CEOs of large companies.

"Insiders" - personnel inside companies or government agencies who stole data - were the second biggest threat agent.

But Enisa noted that nation states were also out to steal information or to blackmail victims, using cyber-espionage, ransomware, malware, botnets, and other tricks.

"Nation states have become the third most active threat agent group with over 20 percent of incidents," it said, adding that "Given the advanced capabilities of this group, performed attacks are often difficult to identify and defend. This means that it is very likely that the actual activity of this group may be much higher".

It named China and Russia several times in its study.

China, India, and Russia were the three most "botnet infected countries", it said, referring to automated internet accounts used to send out spam, malware, denial of service attacks, and other malicious tricks.

The EU report said China was "the top attacking country" on denial of service attacks, which paralyse target systems by flooding them with data. It said 60 percent of all such attacks came from "China's army of hackers" and that 90 percent of them targeted US entities.

Attackers could hire botnet hordes on some Chinese sites "that even include dashboards showing the number of attacks carried out and the number of online bots" available the report said.

They could also rent "exploit kits", software designed to find security loopholes in users' systems, for up to $2,000 a month, on underground websites that offered online "support to both Russian and English speaking clients".

The EU report named three Chinese and Russian cyber-espionage groups - APT17389, APT28387, and APT29388 - as being among the most active and dangerous last year.

It said the China-based APT17389 group conducted "network intrusions against US government entities, the defence industry, law firms, information technology companies, mining companies, and non-government organisations".

It noted that APT28387, "a cyber-espionage group most probably sponsored by the Russian government" had tried to steal VIP guests' data in "hotels in at least seven European countries" in 2017.

The APT29388 group, "a Russian hacker group believed to be associated with Russian intelligence", had targeted Dutch and Norwegian government ministries.

"Understanding the key cybersecurity threats that the EU must respond to and the way in which they are evolving is essential if we are to successfully protect the cyberspace, the key enabler of the EU digital single market," Mariya Gabriel, the EU commissioner for the digital economy, said.

In other trends, Enisa noted that Mac users were increasingly coming under attack.

"Mac users were kept busy dealing with more malware in the second quarter [of 2017] than they had seen in all of 2016," it said.

The report noted the scale of the problem by citing one botnet network on Twitter, the US social media giant, that operated 350,000 fake accounts.

It also noted that individual companies held vast oceans of personal data that could be compromised in single attacks.

An attack on DU Group, a US web application company, last year got access to two billion "user phone numbers, names, and addresses" it said.

NetEase, a Chinese internet firm, let slip 1.2 billion email addresses and passwords that were later sold to other hackers on the web, while River City Media, a US online marketing company, lost 1.4 billion "names, addresses, IP addresses, and email addresses, as well as an undisclosed number of financial documents, chat logs, and backups", Enisa said.

Interview

EU 'underestimated' cyber-crime

"Cybercrime is growing much, much faster than I think we anticipated," the EU commissioner for security, Julian King, told EUobserver.

Opinion

The curious case of the Czech president's missing advisor

A Chinese business advisor to the Czech president has gone missing. The disappearance of one of the main conduits for Chinese investment into the Czech Republic leaves questions for Milos Zeman and his 'special relationship' with president Xi Jinping.

Europol busts global cybercrime gang

A loose network of cyber criminals recruited from an online Russian forum managed to infect thousands of computers in an effort to steal online banking credentials. The gang has been dismantled, with some now on the run.

MEP blasts Portugal over football whistleblower

Ana Gomes, a socialist MEP from Portugal, has accused national authorities of erring on the side of corruption by detaining a whistleblower who helped expose tax evasion by some of Europe's biggest football stars.

News in Brief

  1. Romanian ex-PM frontrunner to head new liberal group
  2. France, Germany and Spain in fighter jet deal
  3. Tusk grilled in Poland over role as PM
  4. Italy is 'most credible' US partner in EU, says Salvini
  5. EU blames Sudan junta for killings and rapes
  6. Report: EU may suspend Turkey customs union talks
  7. Swiss stock exchange could lose EU access in July
  8. Austria's Strache will not take up EU parliament seat

Opinion

A fundamental contradiction in EU drug policy

The knock-on affects from a 'war on drugs' in Europe is creating problems in Albania - and as far afield as Guinea-Bissau, Mali, Bangladesh and the Philippines.

Stakeholders' Highlights

  1. Nordic Council of MinistersNo evidence that social media are harmful to young people
  2. Nordic Council of MinistersCanada to host the joint Nordic cultural initiative 2021
  3. Vote for the EU Sutainable Energy AwardsCast your vote for your favourite EUSEW Award finalist. You choose the winner of 2019 Citizen’s Award.
  4. Nordic Council of MinistersEducation gets refugees into work
  5. Counter BalanceSign the petition to help reform the EU’s Bank
  6. UNICEFChild rights organisations encourage candidates for EU elections to become Child Rights Champions
  7. UNESDAUNESDA Outlines 2019-2024 Aspirations: Sustainability, Responsibility, Competitiveness
  8. Counter BalanceRecord citizens’ input to EU bank’s consultation calls on EIB to abandon fossil fuels
  9. International Partnership for Human RightsAnnual EU-Turkmenistan Human Rights Dialogue takes place in Ashgabat
  10. Nordic Council of MinistersNew campaign: spot, capture and share Traces of North
  11. Nordic Council of MinistersLeading Nordic candidates go head-to-head in EU election debate
  12. Nordic Council of MinistersNew Secretary General: Nordic co-operation must benefit everybody

Latest News

  1. Macron and Mogherini decline to back US accusation on Iran
  2. EU summit must give effective answer on migration
  3. Spain's Garcia set to be next Socialist leader in parliament
  4. Erdogan mocks Macron amid EU sanctions threat
  5. The most dangerous pesticide you've never heard of
  6. 'Russian sources' targeted EU elections with disinformation
  7. Top EU jobs summit dominates This WEEK
  8. EP parties planning 'coalition agenda' ahead of jobs summit

Stakeholders' Highlights

  1. Platform for Peace and JusticeMEP Kati Piri: “Our red line on Turkey has been crossed”
  2. UNICEF2018 deadliest year yet for children in Syria as war enters 9th year
  3. Nordic Council of MinistersNordic commitment to driving global gender equality
  4. International Partnership for Human RightsMeet your defender: Rasul Jafarov leading human rights defender from Azerbaijan
  5. UNICEFUNICEF Hosts MEPs in Jordan Ahead of Brussels Conference on the Future of Syria
  6. Nordic Council of MinistersNordic talks on parental leave at the UN
  7. International Partnership for Human RightsTrial of Chechen prisoner of conscience and human rights activist Oyub Titiev continues.
  8. Nordic Council of MinistersNordic food policy inspires India to be a sustainable superpower
  9. Nordic Council of MinistersMilestone for Nordic-Baltic e-ID
  10. Counter BalanceEU bank urged to free itself from fossil fuels and take climate leadership
  11. Intercultural Dialogue PlatformRoundtable: Muslim Heresy and the Politics of Human Rights, Dr. Matthew J. Nelson
  12. Platform for Peace and JusticeTurkey suffering from the lack of the rule of law

Join EUobserver

Support quality EU news

Join us