Tuesday, March 19, 2024

Russian Hackers Stole NSA Hacking Tools Using Kaspersky Software

Russian Government Hackers are using Kaspersky software to stole NSA Advance cyber Weapons such as secret spying tools from NSA Contractor Personal Home Computer who has been used the Russian Based Kaspersky Security Products.

This Incident reported by The Wall Street Journal  says, Stolen Information are Highly Sensitive Data such as how the NSA penetrates foreign computer networks.

Few Weeks Before, Kaspersky Security Softwares Ban to Use all US Government Agencies including NSA for a lot of Spying Activity Controversy against the Kaspersky Products.

Reason of Kaspersky Ban Stats that, access provided by Kaspersky products to compromise federal information and information systems directly implicates U.S. National security Because Kaspersky Software usually Communicate Directly into every file on the computers which Protect by them and it keeps communicate with Kaspersky Labs

This incident Leads to taking Advance by Russian Hackers and offers some of the useful and important insights that makes very hard for NSA Operations.

Also Read: Kaspersky Security Softwares Ban to Use all US Government Agencies

How Do Russian Hackers Steal NSA Hacking Tools

NSA Strictly Prohibited to take any information neither Data nor NSA Hacking Tools by any of their Contractors from its sensitive secrete Zone Because they Maintain Extremely Secret Cyber operation Details.

This incident Reported that One of the unnamed NSA Contractor has removed the material from the NSA and stored it on a home computer that ran a version of Kaspersky AV.

The Material Contains some of the Confidential Information such as “details about how the NSA penetrates foreign computer networks, the computer code it uses for such spying, and how it defends networks inside the US.

Security Experts Believes that NSA used Kaspersky Security Software alerts to Russian Hackers about the Presence of files that may have been taken from the NSA.

According to Wall Street Journal, Experts said the software, in searching for malicious code, may have found samples of it in the data the contractor removed from the NSA.
But how the antivirus system made that determination is unclear, such as whether Kaspersky technicians programed the software to look for specific parameters that indicated NSA material. Also unclear is whether Kaspersky employees alerted the Russian government to the finding.

No Information about the NSA Contractor Details was Revealed and The report also said it was unclear whether the contractor had lost his job or is facing prosecution.

Last Year Another NSA Contractor who had worked as a contractor for the NSA has been arrested for allegedly stealing classified material from NSA but he is not the person implicated in this case.

NSA Officials said, The man took his work home in violation of NSA rules, and Russian hackers were able to identify the material and access his machine because he was using Kaspersky software.

Kaspersky Denied Statement

Kaspersky says about this allegation, that Kaspersky Lab has not been provided any evidence substantiating the company’s involvement in the alleged incident Kaspersky Lab has not been provided any evidence substantiating the company’s involvement in the alleged incident.

Website

Latest articles

Beware Of Free wedding Invite WhatsApp Scam That Steal Sensitive Data

The ongoing "free wedding invite" scam is one of several innovative campaigns aimed at...

Hackers Using Weaponized SVG Files in Cyber Attacks

Cybercriminals have repurposed Scalable Vector Graphics (SVG) files to deliver malware, a technique that...

New Acoustic Keyboard Side Channel Attack Let Attackers Steal Sensitive Data

In recent years, personal data security has surged in importance due to digital device...

Discontinued WordPress Plugin Flaw Exposes Websites to Cyber Attacks

A critical vulnerability was discovered in two plugins developed by miniOrange.The affected plugins,...

ShadowSyndicate Hackers Exploiting Aiohttp Vulnerability To Access Sensitive Data

A new Aiohttp vulnerability has been discovered, which the threat actor ShadowSyndicate exploits.Aiohttp...

Hackers Launching AI-Powered Cyber Attacks to Steal Billions

INTERPOL's latest assessment on global financial fraud uncovers the sophisticated evolution of cybercrime, fueled...

Fujitsu Hacked – Attackers Infected The Company Computers with Malware

Fujitsu Limited announced the discovery of malware on several of its operational computers, raising...
Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Mitigating Vulnerability Types & 0-day Threats

Mitigating Vulnerability & 0-day Threats

Alert Fatigue that helps no one as security teams need to triage 100s of vulnerabilities.

  • The problem of vulnerability fatigue today
  • Difference between CVSS-specific vulnerability vs risk-based vulnerability
  • Evaluating vulnerabilities based on the business impact/risk
  • Automation to reduce alert fatigue and enhance security posture significantly

Related Articles