Russia behind 58pc of detected state-backed hacks, says Microsoft

Published October 8, 2021
A Microsoft logo is seen on an office building in New York City, US on July 28, 2015. — Reuters/File
A Microsoft logo is seen on an office building in New York City, US on July 28, 2015. — Reuters/File

BOSTON: Russia accounted for most state-sponsored hacking detected by Microsoft over the past year, with a 58pc share, mostly targeting government agencies and think tanks in the United States, followed by Ukraine, Britain and European Nato members, the company said.

The devastating effectiveness of the long-undetected SolarWinds hack it mainly breached information technology businesses including Microsoft also boosted Russian state-backed hackers success rate to 32pc in the year ending June 30, compared with 21pc in the preceding 12 months.

China, meanwhile, accounted for fewer than 1 in 10 of the state-backed hacking attempts Microsoft detected but was successful 44pc of the time in breaking into targeted networks, Microsoft said in its second annual Digital Defence Report, which covers July 2020 through June 2021. While Russia’s prolific state-sponsored hacking is well known, Microsoft’s report offers unusually specific detail on how it stacks up against that by other US adversaries.

The report also cited ransomware attacks as a serious and growing plague, with the United States by far the most targeted country, hit by more than triple the attacks of the next most targeted nation. Ransomware attacks are criminal and financially motivated.

By contrast, state-backed hacking is chiefly about intelligence gathering whether for national security or commercial or strategic advantage and thus generally tolerated by governments, with US cyber operators among the most skilled. The report by Microsoft Corp., which works closely with Washington government agencies, does not address US government hacking.

The SolarWinds hack was such an embarrassment to the US government, however, that some Washington lawmakers demanded some sort of retaliation. President Joe Biden has had a difficult time drawing a red line for what cyberactivity is permissible. He has issued vague warnings to President Vladimir Putin to get him to crack down on ransomware criminals, but several top administration cybersecurity officials said this week that they have seen no evidence of that.

Overall, nation-state hacking has about a 10pc-20pc success rate, said Cristin Goodwin, who heads Microsoft’s Digital Security Unit, which is focused on nation-state actors. Its something that’s really important for us to try to stay ahead of and keep driving that compromised number down because the lower it gets, the better were doing, Goodwin said.

Goodwin finds China’s geopolitical goals in its recent cyberespionage especially notable, including targeting foreign ministries in Central and South American countries where it is making Belt-and-Road-Initiative infrastructure investments and universities in Taiwan and Hong Kong where resistance to Beijing’s regional ambitions is strong. The findings further belie as obsolete any conventional wisdom that Chinese cyber spies’ interests are limited to pilfering intellectual property.

Russian hack attempts were up from 52pc in the 2019-20 period as a share of global cyber-intrusion bids detected by the nation-state notification service that Microsoft employs to alert its customers. For the year ending June 30, North Korea was second as country of origin at 23pc, up from less than 11pc previously. China dipped to 8pc from 12pc.

But attempt volume and efficacy are different matters. North Korea’s failure rate on spear-phishing targeting individuals, usually with booby-trapped emails was 94pc in the past year, Microsoft found.

Published in Dawn, October 8th, 2021

Opinion

A crisis of trust?

A crisis of trust?

Most damaging fallout of the constant demonisation of opponents by political leaders is erosion of public trust in politicians.

Editorial

An unseemly dispute
08 Aug, 2022

An unseemly dispute

THERE is clarity, but perhaps not of the kind that Chief Justice of Pakistan Umar Ata Bandial hoped to achieve when...
Unfair on taxpayers
Updated 08 Aug, 2022

Unfair on taxpayers

Unfair move has drawn valid criticism as it coincides with drastic increase in income tax on salaried people and corporates.
Polio nightmare
08 Aug, 2022

Polio nightmare

AS if the resurgence of polio in southern KP were not enough, officials and international monitoring bodies must now...
Political stunt
Updated 07 Aug, 2022

Political stunt

The former PM is attempting to make a very expensive point with his decision to contest all 9 NA seats going up for by-election.
Monsoon emergency
07 Aug, 2022

Monsoon emergency

AS another wet weather system has entered Pakistan, and the federal government has declared a “monsoon...
Taliban’s denial
07 Aug, 2022

Taliban’s denial

THE Afghan Taliban’s recent statement denying any knowledge of the now deceased Al Qaeda chief Ayman...