Le Lézard
Classified in: Science and technology
Subject: PSF

Area 1 Security Uncovers Russian Cyber Breach of Ukrainian Oil Company Burisma Holdings

REDWOOD CITY, Calif., Jan. 14, 2020 /PRNewswire/ -- Area 1 Security today shared the discovery of an active phishing campaign targeting Burisma Holdings, one of the largest private natural gas producers in the Ukraine - and a company that has been recently entangled in U.S. foreign and domestic politics.

Area 1 Security

A key aspect of attack preemption is having a deep understanding of cyber actor patterns, and continually discovering and deconstructing campaigns to anticipate future ones. During the course of its normal business of stopping phish, Area 1's technology platform identified ongoing phishing campaigns by the Main Intelligence Directorate of the General Staff of the Russian Army (GRU) targeting employees at subsidiaries and partners of Burisma Holdings. The GRU's phishing campaign started in early November 2019 and is designed to steal account credentials, such as usernames and passwords.

This specific phishing technique, known as credential harvesting, allows attackers to observe and gain control of an organization's internal systems by utilizing trusted access methods. Targeting an organization's subsidiaries or partners for credential harvesting gives a natural entrypoint for attackers to get inside the organization.

Once inside, threat actors such as GRU gain access to internal systems and data, impersonate employees through the unauthorized use of their email accounts, and manipulate business outcomes and public perception.

Additional details on Area 1's research are available at https://www.area1security.com/phishing-burisma/.

"Cyber campaigns continue to be a geopolitical tool for waging war, influencing election, theft of intellectual property and financial assets, and espionage," said Oren J. Falkowitz, Chief Executive Officer of Area 1 Security. "Yet time and again, we see that phishing campaigns like the GRU's rely on human perception of authenticity, not on cutting-edge technology. Therefore, phishing campaigns are not insurmountable - and they can be stopped."

Phishing campaigns are successful due to the authenticity imbibed by cyber actors. In order to counter their human ingenuity and thwart campaigns, effective protection requires understanding the elements of authenticity in a campaign paired with deep machine level analytics of campaign patterns to detect and act at scale.

Area 1 Security is the only security provider that continually tracks threat actors and preemptively blocks phishing campaigns and infrastructure in the wild. To learn more, visit www.area1security.com.

About Area 1 Security
Area 1 Security offers the only pay-for-performance solution in the cybersecurity industry - and the only technology that comprehensively blocks phishing attacks before they damage your business. Phishing is the root cause of 95 percent of security breaches.

Area 1 Security works with some of the most sophisticated organizations in the world, including Fortune 500 banks, insurance companies, and healthcare providers to preempt and stop targeted phishing attacks at the outset, improve their cybersecurity posture and change outcomes.

Area 1 Security is committed to Responsible Disclosure guidelines in all situations where it uncovers specific and verifiable campaign activity. As part of our commitment to those guidelines, Area 1 has been engaged with relevant stakeholders that have an interest in understanding this campaign in greater depth.

Learn more at www.area1security.com, join the conversation at @area1security, or subscribe to Phish of the Week for the latest industry news and insights on how to deal with phishing.

Media Contact:
Elaine Dzuba


SOURCE Area 1 Security

These press releases may also interest you

at 09:48
Chubb is celebrating the 10th anniversary of its proprietary and award-winning digital Worldview® platform which provides real-time access to Chubb's systems and expertise in one easy to use application. The platform helps risk managers at large U.S....

at 09:35
Technavio has been monitoring the IT asset management software market and it is poised to grow by $ 353.78 mn during 2020-2024, progressing at a CAGR of 7% during the forecast period. The report offers an up-to-date analysis regarding the current...

at 09:35
Join Endace, Gigamon and IBM for an hour-long webinar focusing on innovative approaches to discovering and confidently finding unalterable evidence of Advance Persistent Threats (APTs). WHAT: Attendees will learn about the following topics: The...

at 09:35
Scener, the co-watching platform where people can connect and interact while streaming the shows they love, announced it is the exclusive watch party affiliate for Comic-Con@Home, supporting its lineup of virtual screenings for films and anime....

at 09:31
Ricoh USA, Inc. today announced that Fusion Cross-Media, a commercial print provider, has reinvented its business goals to adapt to these difficult times, meeting evolving customer needs while contributing to local charities. After public safety...

at 09:30
RealPage, Inc. , a leading global provider of software and data analytics to the real estate industry, today announced it expects that GAAP and non-GAAP revenue, GAAP and non-GAAP earnings per share, GAAP net income and Adjusted EBITDA for the second...

News published on 14 january 2020 at 09:00 and distributed by: