A hacking campaign is targeting the energy sector in Europe and the US to potentially sabotage national power grids, a cybersecurity firm has warned.
The group, dubbed “Dragonfly” by researchers at Symantec, has been in operation since at least 2011 but went dark in 2014 after it was first exposed, secretly placing “backdoors” in the industrial control systems of power plants across the US and Europe.
Now, Symantec reports, the group has resumed operations, apparently working since late 2015 to investigate and penetrate energy facilities in at least three countries: the US, Turkey and Switzerland.
“The Dragonfly group appears to be interested in both learning how energy facilities operate and also gaining access to operational systems themselves, to the extent that the group now potentially has the ability to sabotage or gain control of these systems should it decide to do so,” the cybersecurity firm says.
Dragonfly’s methods are varied, but all its attacks seem to be focused on researching the inner workings of energy firms. It has been seen sending malicious emails with attachments that leak internal network credentials, which are then used to install backdoors on the network allowing the hackers to take control of computers and systems. They’ve also been seen seeding fake flash updates to install the backdoors and carrying out “watering hole” attacks, hacking third-party Web sites that were likely to be visited by people working in the energy sector.
Currently, the group appears to be solely in information-gathering mode, but Symantec warns that a quiet beginning is often a prelude to deliberate attempts at sabotage. The latest campaigns “show how the attackers may be entering into a new phase,” Symantec says, “with recent campaigns potentially providing them with access to operational systems, access that could be used for more disruptive purposes in future.”
The researchers are unable to determine who is behind the Dragonfly campaign: some of the code is in Russian, but some is in French, “which indicates that one of these languages may be a false flag.”
“Conflicting evidence and what appear to be attempts at misattribution make it difficult to definitively state where this attack group is based or who is behind it,” the report concludes.
Attacks on the energy sector have been increasing in frequency and damage in recent years, with Ukraine in particular being at the receiving end of multiple successful strikes. A blackout in west Ukraine in 2015 was caused by a group called Sandworm, while a second attack took out power in the nation’s capital, Kiev, late last year.
But other countries, including Britain and the US, have been subject to quieter attempts at infiltration, according to the UK’s Governent Communications Headquarters. The agency’s National Cybersecurity Centre warned in July that it had spotted connections “from multiple UK IP addresses to infrastructure associated with advanced state-sponsored hostile threat actors, who are known to target the energy and manufacturing sectors.”
African-American entertainer Dooley appeared on local television show Super Entourage (小明星大跟班) a few weeks ago and was told by the crew that they wanted to do a skit in blackface. Dooley, whose real name is Matthew Candler, tells the Taipei Times that Super Entourage wanted to perform a rendition of the wildly popular “Ghana Coffin Dance,” a meme that has taken the world by storm. Instead, he showed them videos about the racist origins of blackface and slavery in America, and they agreed to drop the makeup. “[I told them] about the history [behind blackface] and [said] you decide
June 1 to June 7 In February 1988, Robert Wu (吳清友) set aside NT$17.5 million to purchase two Henry Moore sculptures from London’s Marlborough Gallery. He never bought the pieces. Feeling slighted that the gallery manager initially looked down on him as a Taiwanese, he decided that night to use the money to open his own art space back home. “Without selling any art, that money could support the gallery for four years. If I feature one artist per month, that provides a stage for at least 100 artists,” Wu said in the book Eslite Time (誠品時光) by Lin Ching-yi (林靜宜).
With listicles of local attractions including Costco and numerous children’s playgrounds, I was not expecting much. Opened on Jan. 31, the Taipei MRT’s Circular Line, or Yellow Line, made life in the nation’s capital even more convenient. But judging from Internet search results, it hasn’t opened up many new tourism opportunities, unsurprising as the route mostly crosses densely populated areas and industrial parks. Places like a sports stadium with rainbow colored bleachers perfect for Instagram selfies wouldn’t do it for me either, and it’s pointless to list attractions at the connecting stops that have existed for years. As a history nerd, there
The morning after the ride, my hands ached in a way I’d never before experienced, and my palms looked slightly bruised. Flexing my fingers as I waited for my coffee to cool down, I knew exactly which part of the previous day’s excursion had done this to me. As the go-to-work rush hour ebbed, I’d set off inland on my 125cc scooter. I took Provincial Highway 20 as far as Tainan City’s Yujing District (玉井). From there, I took Provincial Highway 3 into Nansi District (楠西). The route I’d planned would take me past the eastern side of Zengwen Reservoir (曾文水庫)