It isn’t often that it’s acceptable to be alerted of an attack on an online account long after the attack has taken place, but Google might just have a rational reason for doing so. Unfortunately, this can often make the details and motive behind the attack unclear, as many leading journalists and professors have found out.
In late November, these journalists and professors logged in to their Google accounts to find banners alerting them of an attempted breach by “government-backed attackers.” These warnings, which also linked to account security best practices suggested by the web giant, were the latest example of Google’s initiative to alert the targets of nation-sponsored hacking that was first implemented in 2012.
Unfortunately, there is little to help glean exactly when, and from whom, these attacks originated. This is because Google protects its own detection processes by delaying the notification if an attack attempt was unsuccessful. As a result, it is very possible that these warnings came from a spear phishing campaign that Russian operatives launched after the results of the United States Presidential election were announced, in an attempt to spread a backdoor malware called “PowerDuke.”
PowerDuke had appeared in numerous attack campaigns leading up to this message, specifically directed towards US and European policy research organizations, colleges and universities, and other targets concerned with international affairs and defense. While it has not been confirmed that PowerDuke was the cause of Google’s recent notification, it is certainly a possible contender.
Regardless of what was responsible for the notification, it still serves as a valuable reminder of the importance of subscribing to some basic online security measures whenever possible.
While these attacks may have been focused upon journalists and academics, there are still plenty of threats out there for businesses. To keep up-to-date and well-informed on technology issues and best practices, be sure to come back to SCW’s blog.
About the author
Sam is a network engineer with a broad range of experience spanning more than 35 years. He wrote is first piece of code in 1979 and has been involved with the industry ever since. For the last 20 years, he has worked for SCW Consulting where he has embraced his passion for network technology and security.
Mobile? Grab this Article!
Tag Cloud
Comments