FSB reported on the impending cyber attack on the financial system of the Russian Federation from abroad
The Federal security service of Russia reported on the preparation of overseas cyber attacks on the financial system of Russia with the aim of destabilizing it. According to the FSB, the campaign had to be conducted by foreign intelligence services in the period from 5 December 2016 in dozens of Russian cities. Including using cyber attacks intended to destabilize the activities of the largest Russian banks.
Information about preparing from abroad, the cyber attacks on the credit and financial system of the Russian Federation on 2 December published a press-service of the FSB. “FSB of Russia received information about the preparation of foreign intelligence services in the period from 5 December 2016 large-scale cyber attacks with the aim of destabilizing the financial system of the Russian Federation, including the activities of a number of the largest Russian banks”, – stated in the message.
We are talking about the “cyber attack” mass mailing “of SMS messages and posts on social networks (blogs) provocative nature in respect of the credit crisis-the Russian financial system, the bankruptcy and withdrawal of licenses from several banks of Federal and regional significance”. In the message, the FSB emphasizes that the action was to raise a few dozen Russian cities.
The FSB found that the “server capabilities and command centers for cyber-attacks located in the territory of the Netherlands and belong to a Ukrainian hosting company BlazingFast”.
The Ministry said that taking steps to neutralize the impending cyber attacks. “FSB of Russia carried out the necessary activities to neutralize threats to the economic and information security of the Russian Federation and documentation of the impending action” – reported to the secret service.
The Ukrainian company has promised to check the information of the FSB
Meanwhile, Ukrainian hosting company BlazingFast confirmed that they have clients in the Netherlands, and promised to investigate possible illegal activity. “We have mostly foreign customers. We have a little Russian or Ukrainian clients… Yes, we have in the Netherlands. You called and this information is already somewhere there, then we’ll begin to test this whole thing,” said RIA “Novosti” , the representative of the company.
Also BlazingFast said that he first heard about the impending attacks and did not rule out that their customers can engage in illegal activities, but such actions are suppressed. “The first time I hear such information, it first. Secondly, we have a lot of customers, and some of them can do some not quite legal activities. As soon as we receive the query we solved it quickly. We work with the bodies we have so far no requests was about it,” said the company. Also the interlocutor of Agency has specified that BlazingFast hosting itself is not involved in illegal activities.
On November 22 the Central Bank of the Russian Federation warned about possible strengthening of the various types of attacks on Russian banks in anticipation of new year holidays. “The Bank of Russia draws attention that the activity of cyber criminals aimed at stealing customer funds, financial institutions and financial institutions, tends to increase during the period of preparation for the holidays. Therefore, it is likely enhance various types of attacks (including newsletters, publications negative and provocative in social networks, DDoS attacks, distribution of malicious software, etc.) during December of 2016,” – said TASS in the press service of the Central Bank.
It should be noted that the topic of cyber defence raised on the eve of Russian President Vladimir Putin in his annual address to the Federal Assembly. Speaking about the need for the development of digital technologies in Russia, the head of state said that in them lie the risks: “we Need to strengthen protection against cyber threats needs to be considerably increased sustainability of all elements of infrastructure, financial system, state administration,” – said Putin. According to him, “it is a matter of national security and technological independence of Russia, in the full sense of the word – our future”.
In addition, Putin said the attempts “external pressure”, reporting waged against Russia, “customized awareness campaigns” as well as “the invention and injection of sleaze”. Repeated in the West ‘s accusations that Russia is propaganda and interferes in other people’s elections, the Russian President called the myth.
It became known yesterday that the Bank of Russia and the Ministry are in talks on joint actions to respond to a DDoS attack involving telecommunications companies, reported RNS. “We want to make awareness of DDoS-attacks reached the number of operators and they perceived it not in one particular Bank, but as an opportunity to see how these attacks can go to other banks. The second important point is that the service operators must be protected from DDoS attacks even at the most elementary level”, – said the Deputy chief Gubish of the Central Bank Artem Sychev on the forum AntiFraud Russia.
Recall that in mid-November, Russian banks have experienced a series of powerful DDoS attacks, as reported by “Kaspersky Lab”. The average duration of each attack was about an hour, the longest lasted nearly 12 hours. The perpetrators of the cyber attack is yet to be found and brought to justice.
Then, it was reported that the Central Bank jointly with the interior Ministry, the FSB and the Investigative Committee has developed for Russian banks, manual for investigation of cyber attacks. In the document entitled “compilation and analysis of technical data in responding to information security incidents in the implementation of money transfers” governed by the rules of evidence in the investigation of counts related to misappropriation of funds and data through cyber attacks.
Market participants noted the importance of the appearance of the user, as it will help the growing number of cyber crimes in the sphere of misappropriation of funds from Bank accounts to go to court. Currently, law enforcement officers, and even invited technical experts are not always able to set the list of actions in order to secure evidence of criminal acts.
It is assumed that the effect of the introduction of the new regulations will be strengthened by amendments to the Criminal code (CC) stiffening penalties for cyber crimes.
In the beginning of June the Deputy Chairman of the Board of Sberbank Stanislav Kuznetsov has estimated losses of the Russian economy from cyber attacks in 2015 to 600 billion roubles. This amount significantly exceeds the estimates contained in the joint study FRÍA, Group-IB and Microsoft that was introduced in mid-April. Then analysts estimated the damage in 203,5 billion.
Last winter, the interior Ministry reported about the detention in 2015, the international criminal groupings cyberhawks, which prepared the “global operation stealing money from almost all banks in the country, thereby jeopardizing the safety of the entire banking system of the Russian Federation”. While the Ministry did not name any group of criminals, nor the charges against them.