01:38 GMT22 September 2020
Listen Live
    Get short URL

    WASHINGTON (Sputnik) - The US National Security Agency (NSA) and FBI on Thursday accused Russian military hackers of deploying new malware which they believe poses a threat to the Pentagon and the defense industry.

    "The Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS) military unit 26165, whose activity is sometimes identified by the private sector as Fancy Bear, Strontium, or APT 28, is deploying malware called Drovorub, designed for Linux systems as part of its cyber espionage operations," the NSA and FBI said in a statement. "Drovorub represents a threat to National Security Systems, Department of Defense, and Defense Industrial Base customers that use Linux systems."

    Both agencies describe Drovorub as a Linux malware toolset consisting of an implant coupled with a kernel module rootkit, a file transfer and port forwarding tool, and a command and control (C2) server.

    When deployed on a victim's machine, Drovorub provides the capability for direct communications with actor-controlled C2 infrastructure; file download and upload capabilities; execution of arbitrary commands; port forwarding of network traffic to other hosts on the network; and implements hiding techniques to evade detection, according to the statement.

    Western countries have repeatedly voiced concerns over alleged cyberwarfare waged by Moscow against them. Russia has refuted all accusations, and pointed out that no proof has been provided to support the accusations.


    Pompeo Warns US May Stop Sharing Intelligence With Australia Over Victoria Inking Deal With China
    US Intelligence Chief Releases Flynn-Kislyak Transcript
    US Intelligence, Accusing Russia of Shady Deal With Taliban, Is Involved in Drug Trade, Envoy Says
    ‘Intelligence Loss’: Chengdu Consulate Closure Will Frustrate US’ Tibet, Xinjiang Espionage - Expert
    Israeli Intelligence Minister Reveals How Election of Joe Biden in US Might Empower Iran
    Russia, accusations, malware, hackers, Russian Military, US, FBI, NSA
    Community standardsDiscussion