Hackers made the attack on the Ministry of Foreign Affairs of Poland, cracking one of the servers in Latin America and by sending out letters to several employees with trojan. Poles believe that behind it all the same Russian hackers who allegedly intervened in the elections in the United States. Why Poles say relations with the State of São Escobar saved and that the Foreign Ministry of the infection – in the article “Gazety.Ru”.
Information about the failed cyber attack on the Polish Foreign Ministry appeared on January 29 on the website of the daily newspaper Rzeczpospolita, while the attempt to hack was made in December 2016. For information about the incident to journalists provided the press center of the Polish Ministry of Foreign Affairs, however,
the official website of department have no information about the attempt cyber attacks.
Threats detected hacking was not easy: the attackers in advance have access to the server of the Polish Ministry of Foreign Affairs offices in Latin America, and later took advantage of this channel for the distribution of letters supposedly an official statement of NATO Secretary General Jens Stoltenberg, after the meeting of the NATO Council – Russia December 19, 2016. Instead, the text file attached to emails was malicious Trojan installation which would allow hackers to gain access to the data of the Ministry.
Internal verification of the security system showed that the attack was carefully planned.
“Kibershpiony used the recently discovered vulnerability in Adobe Flash Player, they also perfected used by them previously” Trojan horse “- he began to take up less space and is easier to install on a computer,” – commented Mariusz Burd, a spokesman for Prevenity, which deals with information security public institutions in Poland.
The Ministry of Foreign Affairs and Prevenity sure that
for cyber attack is hacker group APT28, representatives of which are also known under the pseudonyms Sofacy and Fancy Bear.
Although the majority of the largest companies specializing in cyber security, believe that ART28 is a department of the Main Directorate of the General Staff of the Armed Forces (the former Main Intelligence Directorate), the official evidence of the APT28 group belonging to the Russian intelligence is not.
Despite the statement by the Foreign Ministry’s press center that the “cyber attack was averted”, Polish officials simply lucky. In social networks and comments under the news in various media users were joking, saying,
the infected file is opened by no one, because no one in the Ministry of Foreign Affairs did not read the letters.
“The Department repulsed the attack without opening the application in the letters. Well, right now the order will fall! Who will get the “White Eagle”, “” These e-mail-I attack several times a week prevented? “- Joking users of the popular news portal Wirtualna Polska.
In discussions on the news on the website Publishing Gazeta.pl a host of jokes about the Foreign Ministry’s servers in Latin America – people thought that they were located in San Escobar.
The soil of these jokes was the recent remarks by Minister of Foreign Affairs Witold Waszczykowski, during which he stated that Poland for the first time in the history of diplomacy managed to establish friendly relations with the state of San Escobar.
Later it turned out that such a state does not exist, and Foreign Minister puncture caused hail of ridicule in the Polish internet community. In the “Wikipedia” as soon as there was an article about San Escobar, and the artist Jarek Kubicki has even created a detailed map of a nonexistent country, which neighbors including Legoland and are Vesteros.
Ministry of Foreign Affairs in his defense stated that “in connection with the specifics of their work in the ministry are particularly susceptible to cyber attacks,” but to strengthen security measures will be taken after the December event. In particular,
special department response to computer incidents will be created.
However, the Polish experts on cybersecurity emphasized that the Polish government ill-prepared for this kind of cases. “In most government agencies ART28 attack could be successful”, – said Mariusz Burdach.
Experts say confirm the successful cases of hacking other Polish authorities. In particular, in 2012, after Poland signed an international agreement to combat counterfeiting (ACTA), hacker group Anonymous made of DDOS-attacks on websites of Polish President and the Prime Minister’s Office, the Sejm, the Ministry of Culture and other government agencies.
Polish Ministry of Defence also repeatedly subjected to hacker attacks: in 2014 burglary was committed group ART28, and in 2016 a group of “Right Sector” (banned in Russia) – then the attackers gained access to Work Defense Ministry and leaked to the network a number of internal documents including photos and profiles of Polish candidates participating in a secret US spy PRISM program.