04.08.2022

The 4th of August, Cyber News

russia 

The russian Foreign Ministry Announced at the UN about the US Management of Ukrainian Hacker Groups

At the third session of the UN open-ended working group on information and communication technologies (ICT), the head of the russian delegation, Deputy Minister of Foreign Affairs of Russia Oleg Syromolotov stated that «russia has evidence that the US created and uses the IT Army of Ukraine hacking group” for attacks on the russian information infrastructure».

Earlier, the Director of the Department of International Information Security of the Ministry of Foreign Affairs of russia, Andriy Krutskykh, announced the work of 22 large and well-organized hacker groups against russia, including the «IT-Army of Ukraine” created in Ukraine, GhostClan in the USA, GNG in Georgia, and Squad303 in Poland». 1

World 

Hackers Stole the Correspondence of the Prime Minister of Albania

Hackers who attacked government platforms and websites in Albania a few days ago published some emails of Prime Minister Edi Rama.

These are mainly complaints from citizens, which are devoted to problems with employment, with property or criteria used in public tenders. Concerns about the political situation are also expressed, or vice versa, citizens write about supporting the prime minister and his work.

The government announced that the attack was comprehensive and large-scale. The methods by which the attack was carried out were similar to a series of cyberattacks on public and private domains in recent years, for example in Ukraine, Germany, Lithuania, Malta, the Netherlands, Belgium and other countries in the region.

Commenting on the cyber attack, Prime Minister Edi Rama said at the time that the attack had been successfully repelled by an Albanian-American team and that no data had been deleted and government services had returned to work.

The head of the government stressed that a special group is working on strengthening cyber protection and investigative actions are being taken to identify the perpetrators. 2

Thousands of Solana wallets drained in multimillion-dollar exploit

Solana, an increasingly popular blockchain known for its speedy transactions, has become the target of the crypto sphere’s latest hack after users reported that funds have been drained from internet-connected “hot” wallets.

An unknown actor drained funds from approximately 8,000 wallets on the Solana network, Solana’s Status Twitter account said. It’s estimated the loss so far is around $8 million.

The attack — which has only affected only «hot» wallets or wallets that are always connected to the internet, allowing people to store and send tokens easily — does not appear to be limited to Solana. Justin Barlow, an investor at Solana Ventures, reported that his USDC balance was drained as well. Crypto analyst @0xfoobar confirmed that «the attacker is stealing both native tokens (SOL) and SPL tokens (USDC)… affecting wallets that have been inactive for less than 6 months».

The attack has compromised other wallets including Phantom, Slope and TrustWallet. Initial reports suggested Solflare users were also impacted, but the company tells it has not been affected by this exploit. Wallets drained should be treated as compromised and abandoned, Solana warned as it encouraged users to switch to hardware or «cold» wallets. 3

The 4th of August, Cyber News