Saturday, July 20, 2024

Russian Hackers Stole NSA Hacking Tools Using Kaspersky Software

Russian Government Hackers are using Kaspersky software to stole NSA Advance cyber Weapons such as secret spying tools from NSA Contractor Personal Home Computer who has been used the Russian Based Kaspersky Security Products.

This Incident reported by The Wall Street Journal  says, Stolen Information are Highly Sensitive Data such as how the NSA penetrates foreign computer networks.

Few Weeks Before, Kaspersky Security Softwares Ban to Use all US Government Agencies including NSA for a lot of Spying Activity Controversy against the Kaspersky Products.

Reason of Kaspersky Ban Stats that, access provided by Kaspersky products to compromise federal information and information systems directly implicates U.S. National security Because Kaspersky Software usually Communicate Directly into every file on the computers which Protect by them and it keeps communicate with Kaspersky Labs

This incident Leads to taking Advance by Russian Hackers and offers some of the useful and important insights that makes very hard for NSA Operations.

Also Read: Kaspersky Security Softwares Ban to Use all US Government Agencies

How Do Russian Hackers Steal NSA Hacking Tools

NSA Strictly Prohibited to take any information neither Data nor NSA Hacking Tools by any of their Contractors from its sensitive secrete Zone Because they Maintain Extremely Secret Cyber operation Details.

This incident Reported that One of the unnamed NSA Contractor has removed the material from the NSA and stored it on a home computer that ran a version of Kaspersky AV.

The Material Contains some of the Confidential Information such as “details about how the NSA penetrates foreign computer networks, the computer code it uses for such spying, and how it defends networks inside the US.

Security Experts Believes that NSA used Kaspersky Security Software alerts to Russian Hackers about the Presence of files that may have been taken from the NSA.

According to Wall Street Journal, Experts said the software, in searching for malicious code, may have found samples of it in the data the contractor removed from the NSA.
But how the antivirus system made that determination is unclear, such as whether Kaspersky technicians programed the software to look for specific parameters that indicated NSA material. Also unclear is whether Kaspersky employees alerted the Russian government to the finding.

No Information about the NSA Contractor Details was Revealed and The report also said it was unclear whether the contractor had lost his job or is facing prosecution.

Last Year Another NSA Contractor who had worked as a contractor for the NSA has been arrested for allegedly stealing classified material from NSA but he is not the person implicated in this case.

NSA Officials said, The man took his work home in violation of NSA rules, and Russian hackers were able to identify the material and access his machine because he was using Kaspersky software.

Kaspersky Denied Statement

Kaspersky says about this allegation, that Kaspersky Lab has not been provided any evidence substantiating the company’s involvement in the alleged incident Kaspersky Lab has not been provided any evidence substantiating the company’s involvement in the alleged incident.


Latest articles

Hackers Claiming Dettol Data Breach: 453,646 users Impacted

A significant data breach has been reported by a threat actor known as 'Hana,'...

CrowdStrike Update Triggers Widespread Windows BSOD Crashes

A recent update from cybersecurity firm CrowdStrike has caused significant disruptions for Windows users,...

Operation Spincaster Disrupts Approval Phishing Technique that Drains Victim’s Wallets

Chainalysis has launched Operation Spincaster, an initiative to disrupt approval phishing scams that have...

Octo Tempest Know for Attacking VMWare ESXi Servers Added RansomHub & Qilin to Its Arsenal

Threat actors often attack VMware ESXi servers since they accommodate many virtual machines, which...

TAG-100 Actors Using Open-Source Tools To Attack Gov & Private Orgs

Hackers exploit open-source tools to execute attacks because they are readily available, well-documented, and...

macOS Users Beware Of Weaponized Meeting App From North Korean Hackers

Meeting apps are often targeted and turned into weapons by hackers as they are...

Hackers Exploiting Legitimate RMM Tools With BugSleep Malware

Since October 2023, MuddyWater, which is an Iranian threat group linked to MOIS, has...
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Free Webinar

Low Rate DDoS Attack

9 of 10 sites on the AppTrana network have faced a DDoS attack in the last 30 days.
Some DDoS attacks could readily be blocked by rate-limiting, IP reputation checks and other basic mitigation methods.
More than 50% of the DDoS attacks are employing botnets to send slow DDoS attacks where millions of IPs are being employed to send one or two requests per minute..
Key takeaways include:

  • The mechanics of a low-DDoS attack
  • Fundamentals of behavioural AI and rate-limiting
  • Surgical mitigation actions to minimize false positives
  • Role of managed services in DDoS monitoring

Related Articles