Saturday

24th Feb 2018

EU names China and Russia as top hackers

  • China was 'the top attacking country' on denial of service attacks (Photo: SimonQ錫濛譙)

Beware of opening emails entitled 'Official Data Breach Notification' or 'UPS Label Delivery' if you are a CEO, the EU's cyber-defence agency, Enisa, warned on Monday (15 January).

Those subject headings were the most popular sent in fake or 'phishing' emails that installed malware on victims' computers in 2017, along with 'IT Reminder: Your Password Expires', 'Please Read Important from Human Resources', and 'All Employees: Update your Healthcare Info'.

Thank you for reading EUobserver!

Subscribe now for a 30 day free trial.

  1. €150 per year
  2. or €15 per month
  3. Cancel anytime

EUobserver is an independent, not-for-profit news organization that publishes daily news reports, analysis, and investigations from Brussels and the EU member states. We are an indispensable news source for anyone who wants to know what is going on in the EU.

We are mainly funded by advertising and subscription revenues. As advertising revenues are falling fast, we depend on subscription revenues to support our journalism.

For group, corporate or student subscriptions, please contact us. See also our full Terms of Use.

If you already have an account click here to login.

  • Russian cyber espionage groups targeted Norwegian and Dutch ministries (Photo: Kelly)

The Greece-based EU agency noted in its annual report that cyber criminals out to steal money were the main "threat agent" who were "responsible for at least two-thirds of the incidents registered".

It said phishing "was reportedly responsible for 90 to 95 percent of successful attacks worldwide" and that the most sophisticated attacks were aimed at CEOs of large companies.

"Insiders" - personnel inside companies or government agencies who stole data - were the second biggest threat agent.

But Enisa noted that nation states were also out to steal information or to blackmail victims, using cyber-espionage, ransomware, malware, botnets, and other tricks.

"Nation states have become the third most active threat agent group with over 20 percent of incidents," it said, adding that "Given the advanced capabilities of this group, performed attacks are often difficult to identify and defend. This means that it is very likely that the actual activity of this group may be much higher".

It named China and Russia several times in its study.

China, India, and Russia were the three most "botnet infected countries", it said, referring to automated internet accounts used to send out spam, malware, denial of service attacks, and other malicious tricks.

The EU report said China was "the top attacking country" on denial of service attacks, which paralyse target systems by flooding them with data. It said 60 percent of all such attacks came from "China's army of hackers" and that 90 percent of them targeted US entities.

Attackers could hire botnet hordes on some Chinese sites "that even include dashboards showing the number of attacks carried out and the number of online bots" available the report said.

They could also rent "exploit kits", software designed to find security loopholes in users' systems, for up to $2,000 a month, on underground websites that offered online "support to both Russian and English speaking clients".

The EU report named three Chinese and Russian cyber-espionage groups - APT17389, APT28387, and APT29388 - as being among the most active and dangerous last year.

It said the China-based APT17389 group conducted "network intrusions against US government entities, the defence industry, law firms, information technology companies, mining companies, and non-government organisations".

It noted that APT28387, "a cyber-espionage group most probably sponsored by the Russian government" had tried to steal VIP guests' data in "hotels in at least seven European countries" in 2017.

The APT29388 group, "a Russian hacker group believed to be associated with Russian intelligence", had targeted Dutch and Norwegian government ministries.

"Understanding the key cybersecurity threats that the EU must respond to and the way in which they are evolving is essential if we are to successfully protect the cyberspace, the key enabler of the EU digital single market," Mariya Gabriel, the EU commissioner for the digital economy, said.

In other trends, Enisa noted that Mac users were increasingly coming under attack.

"Mac users were kept busy dealing with more malware in the second quarter [of 2017] than they had seen in all of 2016," it said.

The report noted the scale of the problem by citing one botnet network on Twitter, the US social media giant, that operated 350,000 fake accounts.

It also noted that individual companies held vast oceans of personal data that could be compromised in single attacks.

An attack on DU Group, a US web application company, last year got access to two billion "user phone numbers, names, and addresses" it said.

NetEase, a Chinese internet firm, let slip 1.2 billion email addresses and passwords that were later sold to other hackers on the web, while River City Media, a US online marketing company, lost 1.4 billion "names, addresses, IP addresses, and email addresses, as well as an undisclosed number of financial documents, chat logs, and backups", Enisa said.

Interview

EU 'underestimated' cyber-crime

"Cybercrime is growing much, much faster than I think we anticipated," the EU commissioner for security, Julian King, told EUobserver.

News in Brief

  1. EU calls for immediate ceasefire in Syria
  2. UK's post-Brexit vision is 'pure illusion', Tusk says
  3. EU leaders express solidarity with Cyprus in Turkey drill row
  4. EU to double funding for Sahel forces
  5. EU parliament president: 'The immigration problem is Africa'
  6. May to unveil EU departure strategy next week
  7. Pregnant workers may be dismissed, EU court rules
  8. Romanian minister demands anti-corruption prosecutor fired

Stakeholders' Highlights

  1. ILGA EuropeAnkara Ban on LGBTI Events Continues as Turkish Courts Reject NGO Appeals
  2. Aid & Trade LondonJoin Thousands of Stakeholders of the Global Aid Industry at Aid & Trade London
  3. Macedonian Human Rights Movement Int.European Free Alliance Joins MHRMI to End the Anti-Macedonian Name Negotiations
  4. Mission of China to the EUChina-EU Tourism Year to Promote Business and Mutual Ties
  5. European Jewish CongressAt “An End to Antisemitism!” Conference, Dr. Kantor Calls for Ambitious Solutions
  6. UNESDAA Year Ago UNESDA Members Pledged to Reduce Added Sugars in Soft Drinks by 10%
  7. International Partnership for Human RightsUzbekistan: Investigate Torture of Journalist
  8. CESICESI@Noon on ‘Digitalisation & Future of Work: Social Protection For All?’ - March 7
  9. UNICEFExecutive Director's Committment to Tackling Sexual Exploitation and Abuse of Children
  10. Nordic Council of MinistersState of the Nordic Region 2018: Facts, Figures and Rankings of the 74 Regions
  11. Mission of China to the EUDigital Economy Shaping China's Future, Over 30% of GDP
  12. Macedonian Human Rights Movement Int.Suing the Governments of Macedonia and Greece for Changing Macedonia's Name

Latest News

  1. EU agrees budget to focus on defence, security and migration
  2. EU leaders nix transnational lists, cool on 'Spitzenkandidat'
  3. Regions chief: calls for smaller EU budget are 'impossible'
  4. Election fever picks up This WEEK
  5. EU-Morocco fishing deal casts doubt on EU future foreign policy
  6. EU leaders put 'Spitzenkandidat' on summit menu
  7. European far-right political party risks collapse
  8. The key budget issues on EU leaders' table

Stakeholders' Highlights

  1. Swedish EnterprisesHarnessing Globalization- at What Cost? Keynote Speaker Commissioner Malmström
  2. European Friends of ArmeniaSave The Date 28/02: “Nagorno-Karabakh & the EU: 1988-2018”
  3. European Heart NetworkSmart CAP is Triple Win for Economy, Environment and Health
  4. European Free AlllianceEFA Joined the Protest in Aiacciu to Solicit a Dialogue After the Elections
  5. EPSUDrinking Water Directive Step Forward but Human Right to Water Not Recognized
  6. European Gaming & Betting AssociationGambling Operators File Data Protection Complaint Against Payment Block in Norway
  7. European Jewish CongressEJC Expresses Deep Concern Over Proposed Holocaust Law in Poland
  8. CECEConstruction Industry Gets Together to Discuss the Digital Revolution @ the EU Industry Days
  9. Mission of China to the EUChina-EU Relations in the New Era
  10. European Free AlllianceEnd Discrimination of European Minorities - Sign the Minority Safepack Initiative
  11. Centre Maurits Coppieters“Diversity Shouldn’t Be Only a Slogan” Lorant Vincze (Fuen) Warns European Commission
  12. Dialogue PlatformWhat Can Christians Learn from a Global Islamic Movement?