Connect with us

U.S.

Multiple Government Agencies Targeted by Advanced Russian Hack

Published

on

  • Multiple government agencies including the Department of Homeland Security, the Department of State, and parts of the Pentagon have been hacked in a far-reaching attack widely believed to be led by Russia.
  • Experts have said the attack was highly advanced, and while the damage is unclear, more agencies are expected to be hit.
  • The hack was first discovered last week by the cybersecurity firm FireEye, which later found the attackers had entered government servers undetected this spring, giving them free rein for much of the past year.
  • The hackers first infiltrated the systems of the firm SolarWinds, which makes network-management software used by many government agencies and large companies. They later gained access to SolarWinds’ clients by infecting software updates the company sent its customers with malware.
  • While the motive is currently unknown, experts have said the recent hack is classic espionage.

Federal Agencies Hacked

At least half a dozen U.S. federal agencies — including several national security-related departments — have been the victims of a highly advanced suspected Russian hack. 

The attacks were first reported Sunday when Trump administration officials at the Treasury and Commerce departments confirmed that key networks had been breached and that the hackers had free range of their email systems.

On Monday, officials in the Homeland Security and State departments, the National Institutes of Health, and parts of the Pentagon also told reporters that they had been hit. 

Currently, the extent of the hacks and the damage they have done is unknown, but people close to the matter have said that the number of federal agencies that were attacked is expected to grow.

While the knowledge of these attacks comes at the close of a tumultuous election season, cybersecurity experts involved in the matter have said that the systems were infiltrated months ago. Top U.S. intelligence agencies did not detect the hacks until they were informed of the breaches by FireEye, a third-party cybersecurity company that had also been a target.

FireEye, which is contracted by intelligence agencies and other federal departments to find and patch security holes in networks that could be vulnerable to hackers, reported last week that hackers from a then-unidentified nation-state had entered their systems and stolen their anti-hacking tools.

The company soon found out that the attack expanded far beyond their own systems. In a statement released Sunday, FireEye described a global campaign of victims that included “government, consulting, technology, telecom and extractive entities in North America, Europe, Asia and the Middle East.” 

SolarWinds

FireEye described the hack as incredibly sophisticated and “some of the best operational security” that they had ever seen in a cyberattack. It also noted that the hackers used at least one piece of malware that has never been previously detected.

The cybersecurity firm said that all of the involved organizations had been hit through a supply-chain attack, where cybercriminals infiltrate a target organization by hacking outside companies supplying products to the intended target that are then introduced into computer networks.

In this case, FireEye found that the supply chain attack started with an Austin-based company called SolarWinds that makes and supplies a widely-used network-management software called Orion.

The attackers hacked SolarWind and manipulated the software updates that the company sends out to their clients whenever there is an upgrade to Orion — much like the notifications your phone or computer sends when it has a software update.

When SolarWinds sent those infected updates to their clients, the hackers were able to gain access to these organizations when they downloaded the Orion update. Very notably, FireEye also said those software updates were delivered to customers between March and May, meaning that these hackers had free reign over these systems undetected for the better part of a year.

As for how many agencies or companies were impacted, right now, it is not entirely clear. In a federal securities filing Monday, SolarWinds reported that of its more than 300,000 clients, only 33,000 use Orion. Of those 33,000, fewer than 18,000 of its customers may have installed the corrupted software, the company said, though it also added it did not yet know how many systems were actually hacked.

However, other experts say the number is actually much, much lower.

“We think the number who were actually compromised were in the dozens,” Charles Carmakal, a senior vice president at FireEye told The New York Times. “But they were all the highest-value targets.”

In addition to the other government agencies that have said they were impacted, SolarWinds also contracts with all five branches of the military, the Executive Offices of the President, the Centers for Disease Control and Prevention, and the National Security Agency — which is the world’s top electronic spy agency.

SolarWinds also has other clients all around the world. According to reports, its services are used by almost all Fortune 500 companies, major defense contractors such as Boeing, and the Los Alamos National Laboratory where nuclear weapons are designed.

While it is unclear how many of those organizations used Orion, experts say that might not matter. As The Times reported, investigators have said that the hackers “used multiple entry points in addition to the compromised Orion software update, and that this may be only the beginning of what they find.”

In fact, in its Monday filing, SolarWinds even explicitly said that Microsoft’s Office 365 email may have also been “an attack vector” used by the attackers. In a blog post Sunday, Microsoft said that it has not found any product vulnerabilities in its own investigation of the hacks.

Suspected Russian Involvement

Neither SolarWinds nor FireEye specifically named the Russians, but numerous officials close to the matter have said that their investigation has pointed to a top Russian foreign intelligence agency known as the SVR, often called Cozy Bear or A.P.T. 29.

While the SVR is known as a traditional collector of intelligence, specializing in digital spying, it is not known for the kind of disinformation campaigns that we saw the Russians running in the 2016 election.

As a result, experts have said that this hack was not a campaign intended to undermine the election like last time, but rather to spy on the highest levels of the government.

“This is classic espionage,” Thomas Rid, a political science professor at the Johns Hopkins School of Advanced International Studies who specializes in cybersecurity issues told The Washington Post. “It’s done in a highly sophisticated way…. But this is a stealthy operation.”

“This so far appears to be classic digital spying of the sort that major nations, including the United States, engage in every day to gain geopolitical edges of various sorts,” The Post added.

“That’s a nine-month stretch that included — to name just a few of the important events that would have created computer files interesting to spies — the worst of the coronavirus pandemic, the historically fast development of vaccines using novel technology, and the U.S. presidential and congressional elections.”

As expected, Russian officials have denied any involvement. In a statement Sunday, the Russian Embassy in Washington called the reports “baseless” and said that Russia “does not conduct offensive operations in the cyber domain.”

Despite this claim, the U.S. intelligence community has extensively documented and verified numerous successful and attempted cyberattacks by Russia in the last several years. 

See what others are saying: (The Washington Post) (The New York Times) (Reuters)

U.S.

White Supremacist Propaganda Reached Record High in 2022, ADL Finds

Published

on

 “We cannot sit idly by as these extremists pollute our communities with their hateful trash,” ADL CEO Jonathan Greenblatt said.


White supremacist propaganda in the U.S. reached record levels in 2022, according to a report published Wednesday by the Anti-Defamation League’s Center of Extremism.

The ADL found over 6,700 cases of white supremacist propaganda in 2022, which marks a 38% jump from the nearly 4,900 cases the group found in 2021. It also represents the highest number of incidents ever recorded by the ADL. 

The propaganda tallied by the anti-hate organization includes the distribution of racist, antisemitic, and homophobic flyers, banners, graffiti, and more. This propaganda has spread substantially since 2018, when the ADL found just over 1,200 incidents. 

“There’s no question that white supremacists and antisemites are trying to terrorize and harass Americans with their propaganda,” ADL CEO Jonathan Greenblatt said in a statement. “We cannot sit idly by as these extremists pollute our communities with their hateful trash.” 

The report found that there were at least 50 white supremacist groups behind the spread of propaganda in 2022, but 93% of it came from just three groups. One of those groups was also responsible for 43% of the white supremacist events that took place last year. 

White supremacist events saw a startling uptick of their own, with the ADL documenting at least 167, a 55% jump from 2021. 

Propaganda was found in every U.S. state except for Hawaii, and events were documented in 33 states, most heavily in Massachusetts, California, Ohio, and Florida.

“The sheer volume of white supremacist propaganda distributions we are documenting around the country is alarming and dangerous,” Oren Segal, Vice President of the ADL’s Center on Extremism said in a statement. “Hardly a day goes by without communities being targeted by these coordinated, hateful actions, which are designed to sow anxiety and create fear.”

“We need a whole-of-society approach to combat this activity, including elected officials, community leaders, and people of good faith coming together and condemning this activity forcefully,” Segal continued. 

See what others are saying: (Axios) (The Hill) (The New York Times)

Continue Reading

Business

Adidas Financial Woes Continue, Company on Track for First Annual Loss in Decades

Published

on

Adidas has labeled 2023 a “transition year” for the company. 


Yeezy Surplus 

Adidas’ split with musician Kanye West has left the company with financial problems due to surplus Yeezy products, putting the sportswear giant in the position to potentially suffer its first annual loss in over 30 years. 

Adidas dropped West last year after he made a series of antisemitic remarks on social media and other broadcasts. His Yeezy line was a staple for Adidas, and the surplus product is due, in part, to the brand’s own decision to continue production during the split.

According to CEO Bjorn Gulden, Adidas continued production of only the items already in the pipeline to prevent thousands of people from losing their jobs. However, that has led to the unfortunate overabundance of Yeezy sneakers and clothes. 

On Wednesday, Gulden said that selling the shoes and donating the proceeds makes more sense than giving them away due to the Yeezy resale market — which has reportedly shot up 30% since October.

“If we sell it, I promise that the people who have been hurt by this will also get something good out of this,” Gulden said in a statement to the press. 

However, Gulden also said that West is entitled to a portion of the proceeds of the sale of Yeezys per his royalty agreement.

The Numbers 

Adidas announced in February that, following its divergence from West, it is facing potential sales losses totaling around $1.2 billion and profit losses of around $500 million. 

If it decides to not sell any more Yeezy products, Adidas is facing a projected annual loss of over $700 million.

Outside of West, Adidas has taken several heavy profit blows recently. Its operating profit reportedly fell by 66% last year, a total of more than $700 million. It also pulled out of Russia after the country’s invasion of Ukraine last year, which cost Adidas nearly $60 million dollars. Additionally, China’s “Zero Covid” lockdowns last year caused in part a 36% drop in revenue for Adidas compared to years prior.

As a step towards a solution, Gulden announced that the company is slashing its dividends from 3.30 euros to 0.70 euro cents per share pending shareholder approval. 

Adidas has labeled 2023 a “transition year” for the company. 

“Adidas has all the ingredients to be successful. But we need to put our focus back on our core: product, consumers, retail partners, and athletes,” Gulden said. “I am convinced that over time we will make Adidas shine again. But we need some time.”

See what others are saying: (The Washington Post) (The New York Times) (CNN)

Continue Reading

U.S.

Immigration Could Be A Solution to Nursing Home Labor Shortages

Published

on

98% of nursing homes in the United States are experiencing difficulty hiring staff. 


The Labor Crisis 

A recent National Bureau of Economic Research paper has offered up a solution to the nursing home labor shortage: immigration. 

According to a 2022 American Health Care Association survey, six in ten nursing homes are limiting new patients due to staffing issues. The survey also says that 87% of nursing homes have staffing shortages and 98% are experiencing difficulty hiring. 

The National Bureau of Economic Research (NBER) outlined in their paper that increased immigration could help solve the labor shortage in nursing homes. Immigrants make up 19% of nursing home workers.

With every 10% increase in female immigration, nursing assistant hours go up by 0.7% and registered nursing hours go up by 1.1% And with that same immigration increase, short-term hospitalizations of nursing home residents go down by 0.6%.

The Solution 

Additionally, the State Department issued 145% more EB-3 documents, which are employment-based visas, for healthcare workers in the 2022 fiscal year than in 2019, suggesting that more people are coming to the U.S. to work in health care. 

However, according to Skilled Nursing News, in August of 2022, the approval process from beginning to end for an RN can take between seven to nine months. 

Displeasure about immigration has exploded since Pres. Joe Biden took office in 2021. According to a Gallup study published in February, around 40% of American adults want to see immigration decrease. That is a steep jump from 19% in 2021, and it is the highest the figure has been since 2016.

However, more than half of Democrats still are satisfied with immigration and want to see it increased. But with a divided Congress, the likelihood of any substantial immigration change happening is pretty slim. 

See what others are saying: (Axios) (KHN) (Skilled Nursing News)

Continue Reading