Tuesday, October 27, 18:37
Home security Microsoft: Russian, Chinese and Iranian hackers target Trump and Biden!

Microsoft: Russian, Chinese and Iranian hackers target Trump and Biden!

Microsoft says Russian, Chinese, and Iranian state-funded hackers have tried to breach accounts e-mail people associated with the election campaigns of Trump and Biden. According to Tom Burt, Vice President of Security and Customer Trust at Microsoft, the majority of attacks were detected and blocked. Burt revealed the incidents in a blog post after Reuters reported some Russian attacks aimed at Biden's campaign. In addition, Burt confirmed a report Director of National Intelligence (DNI) which was announced in August, stating that Chinese and Iranian hackers are also targeting USA.


Russian Attacks
According to Microsoft, the attacks carried out by Russian hackers are linked to a group by name Strontium, also known as APT28 or Fancy Bear. Microsoft pointed out that this group is very active, having targeted more than 200 organizations worldwide, from September 2019 until today. The victims of the Russian hackers include the following: US-based advisers serving Republicans and Democrats, national and state party organizations in the United States, the European People's Party and political parties in the United Kingdom, and think tanks such as the German Marshall Fund and defense organizations.
Microsoft said that while Strontium hackers in the past mainly did spear-phishing attacks, in recent months, use brute-force and password-spraying techniques to infringement accounts.

As these attacks are easy to detect, Microsoft noted that Strontium hides mass-harvesting credentials its businesses using more than 1.000 constantly rotating IP addresses, many of which are related to the Tor anonymization service and adding and subtracting about 20 IPs per day, to further cover their business.

hackers vs Trump-Biden

Chinese Attacks
Many of the attacks detected came from Chinese hackers. While there are currently dozens of hacking groups believed to be operating under the command and protection of the Chinese government, Microsoft said the attacks targeting US campaigns came from a group known as Zirconium The same group was located by Google in June. Microsoft also detected thousands of attacks orchestrated by this group between March 2020 and September 2020, with hackers gaining access at almost 150 accounts during this period. The targets of these attacks include individuals with close ties to US presidential campaigns and candidates (eg, the Biden campaign and attacks on at least one person previously linked to the Trump administration), as well as prominent international affairs figures.


Iranian Attacks
The attacks carried out by the Iranian hackers came from a group known as phosphorous. These attacks are a continuation of a campaign launched last year and for which Microsoft issued warnings in October 2019. Specifically, at that time, Microsoft warned that hackers were targeting a US presidential campaign in 2020, without mentioning it by name. . A thorough investigation revealed that the attacks were aimed at Trump's campaign. Now, Microsoft has confirmed that the attacks are indeed targeting Trump's campaign, while also revealing a new activity related to the group. In particular, he noted that between May and June 2020, Phosphorous hackers unsuccessfully attempted to log in to the accounts of Trump administration officials and staff working on the campaign.


Please enter your comment!
Please enter your name here

Every accomplishment starts with the decision to try.


How to install a .watchface file on Apple Watch

The Apple Watch lets you customize the faces of the watch to display all kinds of useful information. But did you know ...

The five biggest data breaches of the 21st century

Data is becoming more and more sought after as our daily lives become more digitized. The technology giants that monopolize data are ...

Microsoft is limiting the availability of Windows 10 20H2

Microsoft is currently restricting the availability of Windows 10 20H2 to provide all users who want to ...

How to enable the new Chrome Read more feature

The latest version of Google Chrome browser, v86, released earlier this month, contains a secret feature called Read ...

How to choose a custom color for the Start menu

Starting with the October 2020 update, Windows 10 is the default on a theme that removes bright colors from ...

NASA telescope discovers drinking water on the moon

Eleven years ago, a spacecraft changed our view of the moon forever. The data collected by ...

Microsoft: Enhances password spray attack detection capabilities

Microsoft has significantly improved the ability to detect password spray attacks in the Azure Active Directory (Azure AD) and has reached the point ...

How to prevent companies from finding our phone number

In the age of advertising, the more user information is known the more convenient it is for companies. And in particular, the ...

Violation in a psychotherapy clinic led to blackmail of patients

Two years ago, a cyber attack took place in a Finnish psychotherapy clinic, which resulted in data theft and ransom demand. Now,...

Australia: Enhances cybersecurity and privacy!

The Government of New South Wales in Australia has set up a task force to strengthen cybersecurity and protection ...