Hackers are increasingly attacking Russia’s government IT infrastructure to mine cryptocurrencies, a state-affiliated cybersecurity expert said in a speech at the Infoforum conference in Moscow. The deputy director of the National Coordination Center for Computer Incidents also said that such kind of malicious actors have become increasingly active in recent times.
Hackers Injecting Unknown Malware Into Russian Government Servers
According to TASS, Nikolai Murashov pointed out that hackers have injected unknown malware into the infrastructure of Russian government servers including medical institutions, defense contractors, and even research institutes. The hackers apparently utilizes the IT resources to illicitly mine cryptocurrencies. He adds:
For the first time, there have been cases of the introduction of malicious software that encrypts user data into the information infrastructure of medical institutions.
Murashoy did not provide more details about the attacks. He also didn’t clarify if some of these attacks are related to ransomware incidents.
The law enforcement-affiliated expert did raise some of the key concerns on the global cybersecurity landscape, saying it currently remains to be tense. According to him, the reason for this is that hackers have been actively targeting government bodies across the board to steal information.
Cryptocurrency Mining Remains the Least Popular Among Hackers to Raise Funds
The National Coordination Center for Computer Incidents was created by the Federal Security Service (FSB) in 2018. Some of their responsibilities include detecting, warning, and mitigating cyberattacks in Russia.
Meanwhile, researchers at the Group-IB cybersecurity firm have said that cryptocurrency mining is actually one of the least popular ways for hackers to raise funds, both globally and at least in Russia in particular.
According to Group-IB’s Hi-Tech Crime Trends 2020–2021 report, published last November, the main cybersecurity threat for companies is encrypting malware where hackers actively rely on encrypting malware and then threats to leak the encrypted info in return for a ransom payment.