UK pins 'cynical and reckless' Olympic cyberattacks on Russia
Government attributes 2018 campaign to Moscow and claims more assaults were planned for cancelled 2020 summer games
Credit: NurPhoto/NurPhoto/PA Images
The government has attributed to Russia a campaign of cyberattacks that took place during the 2018 winter Olympic and Paralympic games – and claimed that more incursions were planned for this year’s cancelled summer games.
Cyber specialists from Russian military intelligence unit the GRU attempted to disrupt the 2018 winter games in the Korean county of Pyeongchang with a series of attacks on resorts, Olympic officials, and government targets, the National Cyber Security Centre has concluded. This is the first time that any such attacks have been attributed.
“The GRU’s cyber unit attempted to disguise itself as North Korean and Chinese hackers when it targeted the opening ceremony of the 2018 winter games,” the government said. “It went on to target broadcasters, a ski resort, Olympic officials and sponsors of the games in 2018. The GRU deployed data-deletion malware against the winter games IT systems and targeted devices across the Republic of Korea using VPNFilter. The NCSC assesses that the incident was intended to sabotage the running of the winter Olympic and Paralympic games, as the malware was designed to wipe data from and disable computers and networks.”
Security professionals working at the games mitigated the impact of the attack with an effort to “isolate the malware and replace the affected computers, preventing potential disruption”.
The government claims that Russia had conducted “cyber reconnaissance” ahead of similar planned attacks against the summer Olympics that were scheduled to have taken place in Tokyo this year, before being postponed due to coronavirus. Targets for these assaults include “organisers, logistics services and sponsors”.
In the last couple of years, the UK has become increasingly vocal in attributing attacks to the GRU; these include cyber offences in spring 2018 targeted at two government agencies: the Foreign and Commonwealth Office; and the Defence Science and Technology Laboratory.
Foreign Secretary Dominic Raab said: “The GRU’s actions against the Olympic and Paralympic games are cynical and reckless. We condemn them in the strongest possible terms. The UK will continue to work with our allies to call out and counter future malicious cyberattacks.”
The UK has often stood alongside the US and other international allies in calling out alleged Russian cyber aggression and the US Department of Justice also announced this week that it has brought charges against the GRU cyber unit – which is reported to go by the codenames Sandworm and VoodooBear. The charges relate to the attacks on the Pyeongchang winter Olympics and on the UK’s Dstl military research unit.
Newly created organisation aims to improve national resilience
Use of digital channels has fallen back since the first lockdown, Department for Transport data shows
Matt Warman tells PublicTechnology event that government wants products and services to be secure ‘from the ground up’ – reducing burden on consumers and businesses
Public Accounts Committee points to need for more funding and legislative changes
OneTrust presents the reasons why your organisation should invest in privacy management - and offers three easy tips for getting started
The remote-first world has seen email being relied on more than ever as a core communication mechanism - but with 93% of IT leaders acknowledging a risk to sensitive data, what steps should be...
Jointly, Equinix and Cintra enable organisations with mission-critical Oracle workloads to accelerate their journey to cloud, while minimising transition risks - here's how
Defence Medical Services (DMS) is pursuing ground-breaking digital, data and technology transformation which will revolutionise Tri-Service healthcare provision to over 135,000 Armed...