• Latest
  • Trending
  • All
  • News
  • Business
  • Lifestyle
Russian Hackers Targeted Ukrainian Company at Center of Impeachment Storm: Cybersecurity Firm

Russian Hackers Targeted Ukrainian Company at Center of Impeachment Storm: Cybersecurity Firm

January 14, 2020
TOM BASILE: The Real War Is With Communist China

TOM BASILE: The Real War Is With Communist China

July 2, 2025
Dems Resort To Cringe Theatrics As Trump’s ‘Big, Beautiful’ Bill Rolls Toward Finish Line

Dems Resort To Cringe Theatrics As Trump’s ‘Big, Beautiful’ Bill Rolls Toward Finish Line

July 2, 2025
Mike Johnson Touts ‘Forward Momentum’ As Megabill Vote Put On Ice

Mike Johnson Touts ‘Forward Momentum’ As Megabill Vote Put On Ice

July 2, 2025
Jetsetting Elites Can Now Make Tax-Exempt Donations Directly To Their Favorite Disruptive Eco-Activists

Jetsetting Elites Can Now Make Tax-Exempt Donations Directly To Their Favorite Disruptive Eco-Activists

July 2, 2025
CIA Has Begun Job Cuts

CIA Report Slams Investigation into Russia’s Support of Trump

July 2, 2025
Judge Orders Block on Trump Executive Order Restricting Asylum Access at Southern Border

Judge Orders Block on Trump Executive Order Restricting Asylum Access at Southern Border

July 2, 2025
Military Veteran Pardoned for J6 Gets Life Sentence for FBI Attack Plot

Military Veteran Pardoned for J6 Gets Life Sentence for FBI Attack Plot

July 2, 2025
Intel Suggests Iranian Nuclear Program Set Back ‘One To Two Years’, Pentagon Spox Says

Intel Suggests Iranian Nuclear Program Set Back ‘One To Two Years’, Pentagon Spox Says

July 2, 2025
DAVID BLACKMON: Senate Passage Of The OBBBA Involved High Drama Around IRA Subsidies

DAVID BLACKMON: Senate Passage Of The OBBBA Involved High Drama Around IRA Subsidies

July 2, 2025
Some Liberals Would Apparently Rather Protest Trump Than Celebrate America On July 4

Some Liberals Would Apparently Rather Protest Trump Than Celebrate America On July 4

July 2, 2025
Judge Rules Trump Admin Can’t Block Asylum Claims For Migrants Who Cross Southern Border

Judge Rules Trump Admin Can’t Block Asylum Claims For Migrants Who Cross Southern Border

July 2, 2025
Trump Admin Puts Kibosh On Schools Using Taxpayer Dollars To Indoctrinate Kids

Trump Admin Puts Kibosh On Schools Using Taxpayer Dollars To Indoctrinate Kids

July 2, 2025
  • Donald Trump
  • State of the Union
  • Elon Musk
  • Tariffs
  • Congress
  • Faith
  • Immigration
Thursday, July 3, 2025
  • Login
IJR
  • Politics
  • US News
  • Commentary
  • World News
  • Faith
  • Latest Polls
No Result
View All Result
IJR
No Result
View All Result
Home News

Russian Hackers Targeted Ukrainian Company at Center of Impeachment Storm: Cybersecurity Firm

by Reuters
January 14, 2020 at 12:12 pm
in News
242 10
11
Russian Hackers Targeted Ukrainian Company at Center of Impeachment Storm: Cybersecurity Firm

A general view shows a building, which reportedly houses an office of a subsidiary of the Ukrainian energy company Burisma Holdings Ltd, in Kiev, Ukraine January 14, 2020. Valentyn Ogirenko/Reuters

492
SHARES
1.4k
VIEWS
Share on FacebookShare on Twitter

Russian military hackers tried to steal emails from the Ukrainian energy firm where Hunter Biden, the son of Democratic U.S. presidential contender Joe Biden, had a seat on the board, an American cybersecurity firm said on Monday.

Energy company Burisma Holdings Ltd was at the center of attempts by President Donald Trump last July to pressure Ukrainian authorities into announcing an investigation into the Bidens for purported corruption, an effort that has led to the Republican being impeached by the U.S. House of Representatives on charges of abuse of power and obstruction of Congress. 

Trump denies he did anything wrong by asking Ukrainian officials to investigate Hunter Biden’s relationship with Burisma. There has been no evidence of wrongdoing by the Bidens, who reject Trump’s allegations of graft.

California-based Area 1 Security identified the hacking of Burisma and linked it to Russia’s Main Directorate of Military Intelligence, or GRU. The same hacking group, known as “Fancy Bear” or “APT28” by cybersecurity researchers, breached the Democratic National Committee in 2016 in what U.S. investigators described as part of an operation to disrupt that year’s election.

“You can see this attack really is starting to parallel with what we saw in 2016,” Oren Falkowitz, Area 1’s chief executive, said in an interview.

The Russian Defense Ministry did not immediately respond to a request for comment. Officials at the U.S. National Security Agency and the Department of Homeland Security declined to comment.

Burisma did not immediately respond to a request for comment.

A source close to Burisma told Reuters the company’s website had been subject to multiple break-in attempts over the past six months but did not provide further details.

What data the hackers were looking to steal is not clear, Area 1 said. Breaching Burisma could yield communications from, to, or about Hunter Biden, who served as a director between 2014 and 2019. A leak of stolen data could potentially affect the impeachment process and the 2020 U.S. presidential election.

Area 1 said it became aware of the Russian targeting of Burisma after its email security scanning product found suspicious evidence online, including “decoy domains”: websites designed to imitate legitimate email services used by Burisma’s subsidiaries.

Publicly available domain registration records examined by Reuters show that the hackers created the decoy domains between Nov. 11, the day before U.S. Democrats began their first public impeachment hearings, and Dec. 3, the day before the House Judiciary Committee took up the matter.

The records show that the same people also registered fake domains for a Ukrainian media company, named Kvartal 95, in March and April 2019. Kvartal 95 was founded by Ukrainian President Volodymyr Zelenskiy and multiple employees of the company have since joined his administration.

Kvartal 95 and representatives for Zelenskiy did not immediately respond to requests for comment. 

Area 1’s report said it discovered the GRU had targeted two subsidiaries of Burisma – KUB Gas LLC and Esko Pivnich – as well as CUB Energy Inc, which was affiliated with the company, using lookalike domains intended to trick employees into providing their email passwords.

Burisma and its subsidiaries share the same email server, Area 1 said, meaning a breach at any of the companies could expose them all.

The report gave a limited indication of how Area 1 determined that the lookalike domains were the work of the GRU, pointing mainly to similarities in how the hackers had previously set their digital traps. Area 1 co-founder Blake Darche said unpublished data gathered by his firm linked the operation to a specific officer in Moscow, whose identity he was unable to establish. 

But Darche said “we are 100 percent certain” that the GRU was behind the hacking.

An outside researcher, Kyle Ehmke of Virginia-based cybersecurity firm ThreatConnect, who reviewed the malicious domains flagged by Area 1, said based on the information he had seen, he believed “with moderate confidence” that the websites were devised by the GRU.

Ehmke said that the hacking operation against Burisma used methods consistent with Russian hackers associated with the GRU, but that a complete picture was lacking.

John Hultquist, director of intelligence analysis with U.S. cybersecurity firm FireEye, told Reuters the domains discovered by Area 1 are “consistent” with other known APT28 activities.

Russian spies have routinely targeted Ukrainian energy firms with cyberattacks since Russia threw its weight behind a separatist takeover in eastern Ukraine in 2014.  

U.S. intelligence officials have issued warnings that Russia is working to intervene in the November 2020 election. Trump is seeking re-election and Biden is a leading opponent out of a dozen Democrats seeking their party’s nomination.

Andrew Bates, a spokesman for Joe Biden, did not comment directly on the hack but said in an email: “Any American president who had not repeatedly encouraged foreign interventions of this kind would immediately condemn this attack on the sovereignty of our elections.”

(Reporting by Christopher Bing Raphael Satter; Polina Ivanova in Kiev, Ukraine contributed; Editing by Chris Sanders, Grant McCool and Gerry Doyle)

Tags: Donald TrumpHunter BidenImpeachmentRussiaUkraine
Share196Tweet123
Reuters

Reuters

Reuters is an international news organization.

Advertisements

Top Stories June 10th
Top Stories June 7th
Top Stories June 6th
Top Stories June 3rd
Top Stories May 30th
Top Stories May 29th
Top Stories May 24th
Top Stories May 23rd
Top Stories May 21st
Top Stories May 17th

Join Over 6M Subscribers

We’re organizing an online community to elevate trusted voices on all sides so that you can be fully informed.





IJR

    Copyright © 2024 IJR

Trusted Voices On All Sides

  • About Us
  • GDPR Privacy Policy
  • Terms of Service
  • Editorial Standards & Corrections Policy
  • Subscribe to IJR

Follow Us

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
No Result
View All Result
  • Politics
  • US News
  • Commentary
  • World News
  • Faith
  • Latest Polls

    Copyright © 2024 IJR

Top Stories June 10th Top Stories June 7th Top Stories June 6th Top Stories June 3rd Top Stories May 30th Top Stories May 29th Top Stories May 24th Top Stories May 23rd Top Stories May 21st Top Stories May 17th