- U.S., U.K., and Canadian agencies are accusing Russia of stealing research into a COVID-19 vaccine through known cyber attack exploits.
- In a report published Thursday, the three nations officially stated for the first time that the group known as Cozy Bear is a part of Russian intelligence services, a group known for targeting the DNC during the 2016 election.
- However, it’s unlikely that any damage was actually done to research since the goal seems to have been to steal data for Russian use.
- The report never stated if any data was actually stolen or not.
Cyber Attacks Against COVID-19 Research
Intelligence and security agencies from the United States, United Kingdom, and Canada accused Russian intelligence services of instigating cyber attacks against research facilities that are trying to find a COVID-19 vaccine.
In a report published Thursday titled “Advisory: APT29 targets COVID-19 vaccine development,” the U.K. National Cyber Security Centre, Canada’s Communications Security Establishment, and the U.S. National Security Agency wrote, “Throughout 2020, APT29 has targeted various organisations involved in COVID-19 vaccine development in Canada, the United States and the United Kingdom, highly likely with the intention of stealing information and intellectual property relating to the development and testing of COVID-19 vaccines.”
It also states that APT29 is just another name for a famous group of cyber attackers, writing “this report details recent Tactics, Techniques, and Procedures of the group commonly known as ‘APT29’, also known as ‘the Dukes’ or ‘Cozy Bear’.”
The name Cozy Bear may sound familiar because its the same group accused of hacking the Democratic National Convention during the 2016 election.
This report, for the first time, clearly states that the Canadians, British, and Americans officially think Cozy Bear “is a cyber espionage group, almost certainly part of the Russian intelligence services.” While the group has long been assumed to be a part of the Russian security services, in the past it was only ever officially referred to as a “state-backed actor.”
This report follows a similar story from May when the U.S. and U.K. accused “state-back actors” of targeting organizations responding to the coronavirus pandemic with cyber attacks. However, at the time the names of the groups involved were never released.
How Did Cozy Bear Attack?
According to this recent report, Cozy Bear gained access to computers and systems through a variety of methods. Some of these are well known to the public, while others are believed to have been put into the public domain for the first time ever with this report.
Many of these attacks stem from gaining access to machines through well-known security exploits. Most of the exploits have been patched over the last two years, and the report urges companies and organizations to ensure they are up to date.
After gaining access, the attackers would use a malware called SoreFang, which is essentially just a downloader that allows the attacker to put more malware onto a computer. The two other prominent malware mentioned in the report are WellMess and WellMail.
WellMess was discovered in 2018 and allows the hackers to upload and download files from a victim’s computer. While WellMail allows the hacker to execute scripts on a victim’s machine and send that data to a server. The report also states that to their knowledge, information about WellMail hasn’t been in the public domain until today.
Other hacking methods include one of the oldest tricks in the book: phishing. Phishing and Spear Phishing are when a cyber attacker tries to trick someone to give their login credentials. This can be through generic emails pretending to be from an organization, or a more personalized email.
Damage Done to Research
Thursday’s report doesn’t state if research efforts into a COVID-19 vaccine were hampered, nor does it name any specific facilities that were targeted. Yet, it doesn’t seem like any damage was actually done. According to The New York Times, “Outside experts said it appeared that the Russians were simply copying information, not trying to damage the research organizations.”
One of those experts is Mike Chapple, an associate professor teaching cybersecurity at Notre Dame, who said: “The potential harm here is limited to commercial harm, to companies that are devoting a lot of their own resources into developing a vaccine in hopes it will be financially rewarding down the road.”
It’s not too shocking that information that could help Russia develop their own vaccine would be targeted as the country has been hit hard by the coronavirus. Initially, Russian agencies stated they had no cases at all and had it under control; however, now they report cases. As of July 16, there’s been over 750,000 confirmed cases and nearly 12,000 deaths.
Even if the hacks likely didn’t actually affect the progress of research, it didn’t stop officials from being upset about them. British Foreign Minister Dominic Raab said in a statement, “While others pursue their selfish interests with reckless behaviour, the UK and its allies are getting on with the hard work of finding a vaccine and protecting global health.”
While the NSCS’ Director of Operations, Paul Chichester, condemned the attacks. “We condemn these despicable attacks against those doing vital work to combat the coronavirus pandemic,” he said.
Despite the indignation from the U.S., U.K., and Canada, Chapple noted to The New York Times that there’s a chance those three were doing the same to other countries.
“It wouldn’t surprise me if intelligence services of all nations are doing this same kind of thing and using the information to advance their research against coronavirus,” he added.
For their part, Kremlin spokesman Dmitry Peskov denied the allegations, telling the Russian news agency RIA that the allegations were not backed by proper evidence.
See what others are saying: (BBC) (The New York Times) (Reuters)
200 Children Seeking Asylum in the U.K. Are Missing
The missing include at least 13 children under the age of 16.
Children Missing From Hotels
There are 200 asylum-seeking children missing from government care in the United Kingdom according to the parliamentary undersecretary of state at the Home Office.
When children are seeking asylum in the U.K. alone or separated from their parents, the government puts them up in hotel rooms for temporary accommodation. They have done so since 2021 and have temporarily accommodated 4,600 children in that time. However, Simon Murray, the parliamentary undersecretary of state at the Home Office, said that 200 of the children placed in those hotels are missing, including at least 13 who are under the age of 16.
In response to this information, a collection of more than 100 charities sent a letter to the Prime Minister demanding the end of the procedure of placing kids in hotels over safety concerns. The letter says that these children are at risk of trafficking and exploitation by staying in these hotels alone.
Other officials have echoed these concerns, claiming these hotels are targets for organized crime where people use these vulnerable children for labor or trafficking.
Parliament Calls Incident “Horrific”
Murray told the House of Lords on Monday that despite the media reports, his department does not know of any kidnapping cases, though they are investigating. He went on to say there are many reasons why children go missing.
However, lawmakers were not appeased by Murray’s assurances. In a later debate, one member of Parliament called the missing cases “horrific” and another said that it was “putting children at risk.” The children’s commissioner for England also reportedly chimed in asking for, quote “assurances on the steps being taken to safeguard the children.”
Murray went on to say that the use of hotels for asylum-seeking children will hopefully be phased out as soon as possible but did not give a timeline.
The nonprofit Refugee Council called on the government in a tweet to spare no expense in the location of these missing kids.
See what others are saying: (Washington Post) (The Guardian) (The Telegraph)
100,000 U.K. Nurses Launch Biggest Strike in NHS History
Opposition leader Keir Starmer called the strike “a badge of shame on this government.”
The NHS Grinds to a Halt
Some 100,000 members of the Royal College of Nursing (RCN), the United Kingdom’s largest nursing union, launched a historic 12-hour strike Thursday after the government refused to negotiate on higher pay.
The work stoppage, which spans England, Wales, and Northern Ireland, is only the second in the RCN’s 106-year history and the largest the NHS has ever seen. It marks the breaking point for many underpaid nurses and the culmination of a years-long decline in the NHS’s quality of care, put under increasing stress by severe staffing shortages.
Although most NHS staff in England and Wales received a pay rise of around £1,400 this year, worth about 4% on average for nurses, they say it has not kept up with inflation as Britain plunges deeper into a cost-of-living crisis.
When inflation is accounted for, nurses’ pay dropped 1.2% every year from 2010 to 2017, according to the Health Foundation.
Meanwhile, the number of patients waiting for care has reached a record 7.2 million in England, or over one in eight residents, more than double what it was seven years ago.
In July, the cross-party Commons Health and Social Care Select Committee estimated the staffing shortfall could be as high as 50,000 nurses and 12,000 doctors, what one MP called the “greatest workforce crisis in history.”
Many nurses argue that boosting pay will help hospitals recruit more staff.
The RCN demanded a pay raise 5% above the retail rate of inflation, which amounts to a 19% increase, but both Prime Minister Rishi Sunak and the government’s health secretary have claimed that’s not affordable.
During Thursday’s strike, partial staffing continued to remain open for urgent care such as chemotherapy, kidney dialysis, and children’s accident and neonatal units.
Sunak and Starmer Brawl in Parliament
Labor leader Keir Starmer grilled Sunak during Wednesday’s Prime Minister’s Questions (PMQs) on the upcoming strike.
“Tomorrow will be the first-ever nationwide nurse’s strike,” he said. “All the Prime Minister has to do to stop that is to open the door and discuss pay with them. If he did, the whole country would breathe a sigh of relief. Why won’t he?”
“We have consistently spoken to all the unions involved in all the pay disputes that there are,” Sunak replied. “Last year, when everyone else in the public sector had a public sector pay freeze, the nurses received a three-percent pay rise.”
Starmer fired back: “Nurses going on strike is a badge of shame for this government. Instead of showing leadership, he’s playing games with people’s health.”
Sunak called Starmer’s demand that he reopen negotiations with the RCN “just simply a political formula for avoiding taking a position on this issue.”
“If he thinks the strikes are wrong, he should say so,” Sunak said. “If he thinks it’s right that pay demands of nineteen percent are met, then he should say so. What’s weak, Mr. Speaker, is he’s not strong enough to stand up to the union.”
While Starmer has called on Sunak to negotiate with the RCN, he has not explicitly backed the 19% pay raise himself.
Unless the government returns to the bargaining table, the RCN plans to launch a second round of strikes on Dec. 20 to be followed by ambulance strikes that Wednesday and the next.
If the government still refuses to budge, the union said in a statement that nurses will strike for longer periods in more places starting in January, disrupting more health services.
Other industries are also set to see work stoppages this month, including workers on railways, buses, highways, and borders, as well as teachers, postal workers, baggage handlers, and paramedics.
See what others are saying: (BBC) (CNN) (The Guardian)
Fortnite Developer Sued By Parents for Making the Game as “Addictive as Possible”
One child mentioned in the lawsuit played over 7,700 rounds of Fortnite in two years.
Epic Games Sued
A Quebec City judge recently approved a 2019 class-action lawsuit accusing Fortnite developer Epic Games of deliberately making Fortnite addictive.
The parents who brought forward the lawsuit claim their children have become so obsessed with the game that in some cases, they’ve stopped eating, showering, or socializing. The lawsuit claims that these kids have played thousands of games since Fortnite’s release in 2017. In one example, a teenager played over 7,700 games in less than two years.
If the lawsuit succeeds, players addicted to Fortnite living in Quebec since September 2017 could receive compensation. The plaintiff’s attorney, Philippe Caron, reports that over 200 parents outside the lawsuit have reached out to him, saying their child’s well-being has diminished since downloading Fortnite. He told The Washington Post that they are very confident about their case.
Epic Games Responds
“We plan to fight this in court,” Natalie Munoz, a spokesperson for Epic Games said to The Post, “We believe the evidence will show that this case is meritless.”
Munoz also said that Fortnite does allow parents to supervise their child’s playtime and require permission for purchases.
The parents involved in the lawsuit are claiming that they were not aware of the dangers playing Fortnite could pose for their children.
“If she had been informed by the defendants of the risks and dangers associated with the use of FORTNITE,” the lawsuit says of one guardian. “She would have categorically refused to allow the game to be downloaded.”