Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cyberwarfare

Spies and Hackers: Russians Sanctioned by US

From Russia’s most powerful security agencies to obscure firms with meaningless names, here is a look at the entities sanctioned by the United States for alleged hacking targeting November’s presidential election.

From Russia’s most powerful security agencies to obscure firms with meaningless names, here is a look at the entities sanctioned by the United States for alleged hacking targeting November’s presidential election.

– Intelligence agencies –

The Main Intelligence Directorate (GRU) of the Russian military is arguably Russia’s most secretive agency, and has neither a website nor a press office.

The agency was established right after the Bolshevik Revolution and today is run from a state-of-the-art compound built under Putin in 2006 in north-western Moscow.

The GRU has been headed since February by Igor Korobov, who took over following the death of previous chief Igor Sergun. Korobov, who was also sanctioned as an individual, had been Sergun’s deputy before 2016. Three of his deputies are also on the sanctions list.

Russia’s Federal Security Service (FSB) is the country’s most powerful security agency. The FSB emerged from the domestic branch of the Soviet-era KGB to become Russia’s main internal intelligence agency after the collapse of the USSR.

Putin, a former KGB officer, headed the FSB under Boris Yeltsin and the agency has grown in power and prestige ever since he moved to the Kremlin.

The sprawling agency is headquartered at the iconic Lubyanka building in central Moscow and reports directly to Putin. Since 2008 it has been headed by Alexander Bortnikov.

It has its own academy and a vast budget that is mostly classified.

– Associated firms –

The three firms which the US accuses of assisting the GRU-led hack are Special Technology Centre (STLS), Zorsecurity (Esage Lab) and Professional Association of Designers of Data Processing Systems (ANO PO KSI), Obama said.

STLS says on its website it produces radio signal direction finding equipment, which is often used by security services to locate equipment like mobile phones.

Reports have also indicated the firm is the manufacturer of the Orlan drone, which are used by the Russian military and have been shot down in eastern Ukraine, according to Kiev.

Zorsecurity was founded by Alisa Shevchenko, a female hacker who also goes by the cyber name Esage.

A 2014 Forbes profile of her said Shevchenko’s speciality was helping companies find vulnerabilities. In 2014, US software giant Microsoft acknowledged she helped locate a vulnerability and thereby protect its customers.

On Friday, Shevchenko said on her Twitter blog that she was dumbfounded that her “little simple company (closed long ago at that) could possibly appear on the same list with the FSB and international terrorists.”

The Professional Association of Designers of Data Processing Systems is a research and development firm based near Moscow that produces various microelectronic and scanning equipment, including the digital ballot boxes used in Russian elections.

– Most wanted hackers –

Additionally the US Treasury has imposed sanctions on Russian nationals Yevgeny (Evgeniy) Bogachev and Aleksey Belan who have long been on the FBI’s most wanted lists and who are not known to have Russian government connections.

Bogachev, also known by various online nicknames like “Slavik”, is wanted for administering a scheme that infected US computers with malware known as Zeus to steal bank information, with victims ranging from banks to a Native American tribe.

The virus was later modified as GameOver Zeus (GOZ) and resulted in financial losses of over $100 million after infecting up to a million computers.

The FBI has offered a reward of $3 million for information leading to arrest of Bogachev, whom the FBI describes as “one of the worlds worst” cyber criminals and who reportedly resides in Russia’s Black Sea coastal town of Anapa.

Aleksey Belan is a Russian citizen residing in Latvia who is wanted by the FBI for hacking three US e-commerce companies to steal data from millions of accounts to sell to criminals.

Written By

AFP 2023

Click to comment

Expert Insights

Related Content

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Cyberwarfare

Iranian APT Moses Staff is leaking data stolen from Saudi Arabia government ministries under the recently created Abraham's Ax persona

Cybercrime

Artificial intelligence is competing in another endeavor once limited to humans — creating propaganda and disinformation.

Cyberwarfare

The UK’s NCSC has issued a security advisory to warn about spearphishing campaigns conducted by two unrelated Russian and Iranian hacker groups.

Cyberwarfare

Russia-linked cyberespionage group APT29 has been observed using embassy-themed lures and the GraphicalNeutrino malware in recent attacks.

Cyberwarfare

WASHINGTON - Cyberattacks are the most serious threat facing the United States, even more so than terrorism, according to American defense experts. Almost half...

Cybercrime

Albanian prosecutors on Wednesday asked for the house arrest of five public employees they blame for not protecting the country from a cyberattack by...

Cyberwarfare

Cybersecurity firm Group-IB is raising the alarm on a newly identified advanced persistent threat (APT) actor targeting government and military organizations in Asia and...