The Russian hacker group Turla disguised itself as Iranians and stole state secrets from multiple countries, authorities from the U.S. and U.K. said Monday.
“Identifying those responsible for attacks can be very difficult, but the weight of evidence points towards the Turla group being behind this campaign,” Paul Chichester, director of operations at GCHQ's National Cyber Security Centre, said in a release. “We want to send a clear message that even when cyber actors seek to mask their identity, our capabilities will ultimately identify them.”
“The joint response from the NCSC and the NSA is clearly meant to send a message to hostile APT groups that they will attribute an attack accurately, even if substantial steps to obfuscate the actor’s origins are taken,” said Richard Gold, head of security engineering at Digital Shadows.
Please register to continue.
Already registered? Log in.
Once you register, you'll receive:
The context and insight you need to stay abreast of the most important developments in cybersecurity. CISO and practitioner perspectives; strategy and tactics; solutions and innovation; policy and regulation.
Unlimited access to nearly 20 years of SC Media industry analysis and news-you-can-use.
SC Media’s essential morning briefing for cybersecurity professionals.
One-click access to our extensive program of virtual events, with convenient calendar reminders and ability to earn CISSP credits.