Read news from:
Austria
SHARE
COPY LINK

TELEFONICA

Cyber attack targets major Spanish firms: government

Telecom giant Telefonica and several other Spanish companies were targeted in cyber attacks Friday, the government said.

Published: 12 May 2017 16:25 CEST
Cyber attack targets major Spanish firms: government
An IT researcher in Rennes, France shows on a giant screen a computer infected by ransomware. File photo: AFP

The energy ministry said it had “confirmation of various cyber attacks targeting Spanish companies”, adding the attackers used so-called ransomware which blocks access to files until a ransom is paid.

Some staff computers at the firms were affected, but service and network operations were not, the ministry said.

The firms' clients were also unaffected.

It added that there had been no breach of data security.

Spain's national cryptology centre, a division of the country's intelligence services, said the ransomware used in the attacks was of the WannaCry type which locks targeted files with a secret encryption algorithm.

It affected Windows operating systems and any linked networks, it said.

Telefonica reacted by switching off all computers at its Madrid headquarters, after hundreds of PCs came under attack, a source at the company told AFP.

Telefonica staff were told in megaphone announcements to urgently shut down their workstations, the source said.

Spanish energy company Iberdrola, a client of Telefonica, meanwhile shut down its computers as a precaution, a spokesman told AFP, but later found them to be unaffected by the attacks.

HACKING

Norway accuses Russian hackers of parliament attack

Norway's domestic spy agency on Tuesday blamed a Russian hacker group linked to Moscow's military intelligence for a cyberattack on the Norwegian parliament earlier this year.

Published: 8 December 2020 16:51 CET
Norway accuses Russian hackers of parliament attack
Norway's parliament in 2013. Photo: Mike McBride/Flickr

The Norwegian intelligence agency (PST) said the likely perpetrators were the Fancy Bear collective — a group regularly accused of attacks including on the US election — but there was not enough evidence to pursue charges.

A “vast” cyberattack on August 24th gained access to the emails of some MPs and parliamentary employees, officials announced at the time, without speculating on the identity of the attackers.

Norwegian Foreign Minister Ine Eriksen Søreide later accused Russia of being behind the attack, and PST investigators have now strengthened her claims.

“The investigation shows that the network operation which the Storting (Norwegian parliament) was subjected to was part of a broader national and international campaign that has been going on since at least 2019,” PST said in a statement.

“Analyses show that it is likely that the operation was led by a cyber actor … known as APT28 or Fancy Bear. This actor has ties to GRU, Russia's military intelligence agency.”

Using a method known as a “brute force attack”, where multiple passwords and usernames are submitted with the hope of eventually getting the right combination, the hackers were able to download “sensitive” information, PST said.

“The investigation has however not yielded enough elements to bring charges,” it said in a statement.

Russia's embassy in Norway has yet to comment on the PST findings, but in October it lambasted Eriksen Søreide's accusation as “unacceptable”.

“We consider this a serious and wilful provocation, destructive for bilateral relations,” the embassy said on its Facebook page at the time.

While relations are generally good between NATO member Norway and Russia, who share a border in the Far North, several espionage cases on both sides have soured relations in recent years.

Norway's intelligence agency regularly singles out Russia as one of the country's main espionage threats alongside Iran and China.

READ ALSO: Norway accuses Russia over cyber attack on parliament

SHOW COMMENTS