Belgium Investigating Attack on Interior Ministry Network
Thursday, May 27, 2021
The discovery of the attack against the interior ministry comes a few weeks after the websites of about 200 public and private entities in Belgium were knocked fully or partially offline by a large-scale distributed denial-of-service attack against the publicly funded internet service provider Belnet (see: DDoS Attack Knocks Belgian Websites Offline).
Difficult Attribution
Ilia Kolochenko, founder of security firm ImmuniWeb, and a member of Europol Data Protection Experts Network, notes that attributing cyberespionage campaigns can be difficult.
"Oftentimes, they deal via so-called brokerage, making attribution even harder by placing hacking orders to trusted intermediaries who later hire and pay the attackers," he says.
Attackers "commonly try to mislead possible forensic investigations of the intrusion by copying attack patterns of known hacking groups or, among other things, by stealing data that they don't really need, but want to exfiltrate as if it was the primary target of the attack," he adds. Read Full Article
teiss: Chinese hackers infiltrated Belgian government network via Microsoft Exchange exploit
CPO Magazine: Ransomware Attack Hits Insurance Giant AXA One Week After It Changes Cyber Insurance Policies in France