How did hackers get access to terabytes of data from Russian intelligence?
By hacking one of its vendors.
No wonder vetting your vendors remains one of the most attended topics at SecureWorld when it's on the conference agenda.
Forbes has done an intriguing write-up on this data breach.
The breach revealed details on several Russian cyber activities:
"The projects themselves appear to be a mix of social media scraping (Nautilus), targeted collection against internet users seeking to anonymize their activities (Nautilus-S), data collection targeting Russian enterprises (Mentor), and projects that seem to relate to Russia's ongoing initiative to build an option to separate the internal internet from the world wide web (Hope and Tax-3)."
This includes Russian efforts on de-anonymizing the Tor browser. For the backstory, keep reading.
