Malware found on vitality organization portable PC may not be aftereffect of Russian hack

Suspicious activity detected on a Vermont-based utilities company laptop last week may not have been linked to Russian hackers, the Washington Post says today. That's a reversal on a report published by the Post last week, in which it said that US officials had found evidence of Russian malware on a computer at the Burlington Electric Department, code linked to a hacking operation codenamed "Grizzly Steppe" by US intelligence officers.
The alert was reportedly triggered when a Burlington Electric Department employee noticed his computer had connected to a suspicious IP address while checking his Yahoo email inbox. The IP address in question had previously been associated with Grizzly Steppe — the operation connected to the DNC email hack last year — but experts and officials close to the investigation now say that the traffic may have been benign.
Traffic with the noted IP address has been found elsewhere in the United States, indicating that the Burlington discovery wasn't a sign of a targeted attack, and is not always linked with malicious activity. The Post also reports that officials found a suite of malware on the laptop, a more standard criminal package known as "Neutrino," which is not believed to be connected to any Russian hacking operations.
The Post originally reported that Russian hackers had breached the US electrical grid with the apparent attack, but according to the Burlington Electric Department itself, the laptop in question was not connected to the utilities system. "The grid is not in danger," Vermont Public Service Commissioner Christopher Recchia said at the time, specifying that monitoring utilities "flagged it, saw it, notified appropriate parties and isolated that one laptop with that malware on it."
In a bid to inform companies about the risk of cyberattacks coming from abroad, the FBI and the Department of Homeland Security released a report last week that contained a list of suspicious IP addresses — a list that presumably included the address discovered by Burlington Electric Company employees. The report gave advice on how to proceed if such indicators were discovered, but warned against assuming every IP it mentioned was a stone-cold indicator of a hacking operation, with a note saying that “upon reviewing the traffic from these IPs, some traffic may correspond to malicious activity, and some may correspond to legitimate activity.”
The report was still criticized, however, for featuring too broad a swathe of IPs, with 30 percent of the addresses being benign proxies or servers used by companies like Amazon and Yahoo. Experts warned that the report may cause people to jump to early conclusions — as apparently happened in Vermont — but a Department of Homeland Security official said the document was "“precisely the type of information DHS should be sharing, particularly since we know that cybersecurity capabilities differ among companies and organizations.”

Comments

Post a Comment

Popular posts from this blog

Verizon Pixel phones will get updates at the same time as Google's

Image
One of the main advantages of owning a Nexus device is the vanilla Android experience — that is, you don’t have to deal with bloatware, unnecessary skins and you’ll know your device will be supported with timely updates. Google’s new Pixel and Pixel XL should continue that tradition, but with Verizon as the exclusive carrier in the US, there’s been some confusion about what that’ll mean in terms of updates, especially following news that Google has relinquished controlof delivering Android software updates to Pixel phones sold by the carrier. Any Nexus user who purchased a device from Verizon knows that the carrier isn’t known for offering speedy Android upgrades. But according to a statement to Ars  Technica, that’s all going to change with the Pixel and Pixel XL. The carrier claims that all operating system and security updates will be delivered simultaneously to all Pixel devices, “much like iOS updates” whether you bought it at Verizon or directly through Google. “Verizon...
Read more
Image
When the Nokia 3310 was released back in the year 2000, it gained a reputation as the Chuck Norris of cell phones. If it were on the Mohs scale of hardness, the 3310 would knock diamond off the top spot. But it seems the more recent Nokia handsets – a Nokia 301in this instance, first released in 2013 – are just as invincible, with one reportedly saving a man’s life by stopping a bullet. A picture posted on Twitter showed the remains of the Nokia. You can see the back end of the projectile protruding from the rear of the phone, with the tip sticking out of the smashed screen. The image comes from Peter  Skillman, a former Nokia executive who now works for Microsoft as the general manager for user experience at Windows Desktop. He says he worked on the team that originally developed the 301, and claims the sturdy handset’s heroics saved a man in Afganistan last week. A Nokia phone I worked on a few years ago saved the life of a man in Afghanistan last week. The embedded bul...
Read more

Henry Knight teams up with Unlimited L.A to create visual to his new released single ''Desire''

Image
Henry Knight, Nigerian born songwriter and vocalist, who recently got signed to Matt Westside Records ; has teamed up with Unlimited L.A  to create a dope music video for his single "Desire". Shot at different locations in Lagos, Nigeria, the video brings the lyrics of the track to life. 'Desire' is one of t ... 'Desire' is one of the first 2 singles to be released by Henry Knight under the Matt Westside Records imprint. Youtube Link: https://youtu.be/B97XTh4_9iU Audio Link: Desire: http://www.hulkshare.com/dl/2ctwnil0tq9s /hulkshare.mp3?d=1 'DESIRE' is available on iTunes, Spotify, Boom Player and all music stores. CONNECT WITH HENRY KNIGHT www.twitter.com/iamhenryknight www.instagram.com/iamhenryknight CONNECT WITH MATT WESTSIDE RECORDS www.mattwestsiderecords.com www.twitter.com/mattwestsideng www.instagram.com/mattwestsideng www.facebook.com/MattwestsideRecords Bookings: henryknight@mattwestsiderecords.com
Read more