Tech

FBI Breaks Up Russian Cyber Intrusion Group

by Amira Saadeh
February 16, 2024

Reading time: 2 min

The FBI has stopped the cyber intrusions of a sophisticated hacking network with ties to the Russian intelligence service.

The group accessed over 1,000 US and international personal and small business internet routers by exploiting default passwords.
The hackers planted malware to create a “Botnet,” a network of compromised computers controlled by the attackers.

The Federal Bureau of Investigation (FBI) has disrupted a hacking network that could be traced back to the Russian intelligence service.

The operation uncovered a sophisticated scheme in which hackers gained access to over 1,000 US and international personal and small business internet routers by using default passwords.

According to the U.S. Justice Department (DOJ), officials identified the hacker group as Fancy Bear (also known as APT28) and believe that the hackers are associated with Russia’s Main Intelligence Directorate (GRU). The cyber intrusion employed compromised routers to conduct “harvesting campaigns” against targets aligned with Russian intelligence interests. They exploited routers with default administrator passwords, like “password” or “0000.” Once in, they planted malware to create a “Botnet,” a network of compromised computers controlled by the attackers.

However, the FBI secretly thwarted their plans as they remotely neutralized the network by making critical adjustments to the infected routers. The operation, termed “Operation Dying Ember,” utilized legal measures to disrupt Botnet’s operations. The agents obtained a court order that allowed them to effectively disable the network. They also deleted stolen data and malware from the compromised routers while they were at it. They went the extra mile too, remotely changing firewall settings to block further access.

During his address at the Munich Security Conference, FBI director Christopher A. Wray emphasized the wider ramifications of these cyber intrusions. He stressed ongoing concerns regarding hacking endeavors backed by China and Russia, particularly those directed at critical sectors such as telecommunications and energy.

This situation shows the persistent threat of state-sponsored hacking activities, particularly from Russia and China. They usually target critical infrastructure, such as the telecommunications and energy sectors. It’s a good thing that they managed to shut it down before something worse happened. If there’s an escalation in cyber intrusions, our trust in digital systems, which is already held on by a hair, could erode, so much so it might disrupt whole economies.

The efforts showcased here were international, even if the operation was FBI-led. This also goes to prove that international cooperation is important, not just for trade, but also for the safety of the population.

Inside Telecom provides you with an extensive list of content covering all aspects of the tech industry. Keep an eye on our Tech sections to stay informed and up-to-date with our daily articles.

Tags: APT28 Botnet China Christopher A. Wray Court Order Cyber Intrusion Cybersecurity Default Passwords Digital Systems Economies Energy Sector Fancy Bear FBI Firewall Settings GRU Hacking Network Harvesting Campaigns International International Cooperation Internet Routers Legal Measures Main Intelligence Directorate Malware Munich Security Conference Neutralized Operation Dying Ember Russian Intelligence Service State-Sponsored Hacking Activities Stolen data Telecommunications U.S Justice Department U.S.

Monty Capital Achieves Key Regulatory Milestone with the Acquisition of DFSA Category 4 License in Dubai

Surge in International Demand Spurs GITEX GLOBAL, Expand North Star to Take Over the City of Dubai at Two Mega Venues

Web3 Gaming Takes Center Stage in the UAE at Future Blockchain Summit

Future Blockchain Summit Announces the 1inch Network as its 2023 Headline Sponsor

IoT Tech Expo Europe: Agenda Delivers Beyond Expectations

Enea, Zain KSA to Test New Network Security Solutions

It’s 2017 All Over Again, as FCC Debates Net Neutrality

Marine Cable Project, 2Africa, May Go Live in 2024

US Allocates $42 billion for Universal Access to High-Speed Broadband by 2030

Ericsson to Uplift India’s 5G

Anthropic Launches Business Chatbot to Capture Corporate Market

Inhabitr Introduces AI-Powered Furnishing Solutions to the Middle East

GPT2- Chatbot Introduced Itself Mysteriously

SK Telecom to Release a Custom-Made AI, Telco LLM

OpenAI’s AI ‘Memory’ Feature Is Now Available for All Paying Users

MyMonty: The New Era of Banking

Entering the Monty Multiverse at Seamless 2023

Seamless Dubai 2023 - From Concept to Reality: Shaffra Technologies Opens Doors to Metaverse Mastery

Take A Look in the Mirror. The Greatest Technology of All Will Stare Back at You

Monty Mobile Enters Multibillion-Dollar MNO Equipment Industry

Kids Are Happier with Minimal Phone Usage, Survey

The Modern Workplace: Why Employees' Experience Needs a Digital Upgrade

For Some Endangered Species, this may be Technology’s Finest Hour

MCR Hotels Bought London’s BT Tower

Super Bowl LVIII’s Biggest Loser was Tesla

FBI Breaks Up Russian Cyber Intrusion Group