Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cyberwarfare

Norway Accuses Russian Hackers of Parliament Attack

Norway’s domestic spy agency on Tuesday blamed a Russian hacker group linked to Moscow’s military intelligence for a cyberattack on the Norwegian parliament earlier this year.

Norway’s domestic spy agency on Tuesday blamed a Russian hacker group linked to Moscow’s military intelligence for a cyberattack on the Norwegian parliament earlier this year.

The Norwegian intelligence agency (PST) said the likely perpetrators were the Fancy Bear collective — a group regularly accused of attacks including on the US election — but there was not enough evidence to pursue charges.

A “vast” cyberattack on August 24 gained access to the emails of some MPs and parliamentary employees, officials announced at the time, without speculating on the identity of the attackers.

Norwegian Foreign Minister Ine Eriksen Soreide later accused Russia of being behind the attack, and PST investigators have now strengthened her claims.

“The investigation shows that the network operation which the Storting (Norwegian parliament) was subjected to was part of a broader national and international campaign that has been going on since at least 2019,” PST said in a statement.

“Analyses show that it is likely that the operation was led by a cyber actor … known as APT28 or Fancy Bear. This actor has ties to GRU, Russia’s military intelligence agency.”

Using a method known as a “brute force attack“, where multiple passwords and usernames are submitted with the hope of eventually getting the right combination, the hackers were able to download “sensitive” information, PST said.

“The investigation has however not yielded enough elements to bring charges,” it said in a statement.

Advertisement. Scroll to continue reading.

Russia’s embassy in Norway has yet to comment on the PST findings, but in October it lambasted Eriksen Soreide’s accusation as “unacceptable”.

“We consider this a serious and wilful provocation, destructive for bilateral relations,” the embassy said on its Facebook page at the time.

While relations are generally good between NATO member Norway and Russia, who share a border in the Far North, several espionage cases on both sides have soured relations in recent years.

Norway’s intelligence agency regularly singles out Russia as one of the country’s main espionage threats alongside Iran and China.

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Learn about active threats targeting common cloud deployments and what security teams can do to mitigate them.

Register

Join us for an in depth exploration of the critical nature of software and vendor supply chain security issues with a focus on understanding how attacks against identity infrastructure come with major cascading effects.

Register

Expert Insights

Related Content

Cyberwarfare

WASHINGTON - Cyberattacks are the most serious threat facing the United States, even more so than terrorism, according to American defense experts. Almost half...

Cyberwarfare

Russian espionage group Nomadic Octopus infiltrated a Tajikistani telecoms provider to spy on 18 entities, including government officials and public service infrastructures.

Cybercrime

Patch Tuesday: Microsoft calls attention to a series of zero-day remote code execution attacks hitting its Office productivity suite.

Cyberwarfare

Several hacker groups have joined in on the Israel-Hamas war that started over the weekend after the militant group launched a major attack.

Cybercrime

On the first anniversary of Russia’s invasion of Ukraine, cybersecurity companies summarize the cyber operations they have seen and their impact.

Cyberwarfare

The war in Ukraine is the first major conflagration between two technologically advanced powers in the age of cyber. It prompts us to question...

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...