Microsoft says Russia-linked hackers target sports organizations

This post was originally published on this site

https://i-invdn-com.akamaized.net/trkd-images/LYNXMPEF9R1JU_L.jpg
© Reuters. FILE PHOTO: Microsoft holds device-launching event in Barcelona ahead of the 2019 Mobile World Congress© Reuters. FILE PHOTO: Microsoft holds device-launching event in Barcelona ahead of the 2019 Mobile World Congress

(Reuters) – Microsoft Corp (NASDAQ:) said it has tracked “significant” cyberattacks coming from a group it calls “Strontium” or “Fancy Bear”, targeting anti-doping authorities and global sporting organizations.

The group, also called APT28, has been linked to the Russian government, Microsoft said in a blog post. (https://

At least 16 national and international sporting and anti-doping organizations across three continents were targeted in the attacks which began on Sept. 16, according to the company.

The company said some of these attacks had been successful, but the majority had not. Microsoft has notified all customers targeted in these attacks.

Strontium, one of the world’s oldest cyber espionage groups, has also been called Sofancy and Pawn Storm by a range of security firms and government officials. Security firm CrowdStrike has said the group may be associated with the Russian military intelligence agency GRU.

Microsoft said Strontium reportedly released medical records and emails taken from sporting organizations and anti-doping officials in 2016 and 2018, resulting in an indictment in a federal court in the United States in 2018.

The software giant added that the methods used in the most recent attacks were similar to those used by Strontium to target governments, militaries, think-tanks, law firms, human rights organizations, financial firms and universities around the world.

Strontium’s methods include spear-phishing, password spray, exploiting internet-connected devices and the use of both open-source and custom malware, it added.

Microsoft has in the past taken legal steps o prevent Strontium from using fake Microsoft internet domains to execute its attacks.

By August last year, Microsoft had shut down 84 fake websites in 12 court-approved actions over the past two years. (https://reut.rs/2JsrjjW)

Microsoft said at the time that hackers linked to Russia’s government sought to launch cyber attacks on U.S. political groups.

Disclaimer: Fusion Media would like to remind you that the data contained in this website is not necessarily real-time nor accurate. All CFDs (stocks, indexes, futures) and Forex prices are not provided by exchanges but rather by market makers, and so prices may not be accurate and may differ from the actual market price, meaning prices are indicative and not appropriate for trading purposes. Therefore Fusion Media doesn`t bear any responsibility for any trading losses you might incur as a result of using this data.

Fusion Media or anyone involved with Fusion Media will not accept any liability for loss or damage as a result of reliance on the information including data, quotes, charts and buy/sell signals contained within this website. Please be fully informed regarding the risks and costs associated with trading the financial markets, it is one of the riskiest investment forms possible.

Add Comment