Microsoft: Moscow-linked hackers hit anti-doping agencies

The attacks began on September 16 and took aim at least 16 international sporting and anti-doping agencies on three continents, according to Microsoft’s customer security vice-president Tom Burt.

Published : Oct 29, 2019 19:25 IST , Paris

Fancy Bear, linked to Russian intelligence agencies, had previously targeted anti-doping organisations after revelations of the Russian doping conspiracy between 2011-2015 led to the country being banned from international competition.

A hackers group linked to Moscow has targeted sporting and anti-doping organisation across the world with “significant” cyber attacks as anti-doping authorities mull new allegations against Russia.

Microsoft said that it had tracked “significant cyber attacks originating from a group we call Strontium , also known as Fancy Bear/APT28, targeting anti-doping authorities and sporting organisations around the world.”

The attacks began on September 16 and took aim at least 16 international sporting and anti-doping agencies on three continents, according to Microsoft’s customer security vice president Tom Burt.

The latest cyber attacks involve spear-phishing and password spray, exploit internet-connected devices and use both open-source and custom malware, Microsoft said.

“Some of these attacks were successful, but the majority were not,” Burt said in an official Microsoft blog.

WADA is reviewing allegations that Russia manipulated data from the Moscow laboratory at the centre of the state-sponsored doping scandal that erupted ahead of the 2016 Rio Olympics.

The latest cyber attacks involve spear-phishing and password spray, exploit internet-connected devices and use both open-source and custom malware.

WADA said it hoped to reach a decision by the end of the year that could result in new sanctions on Russia.

Microsoft said Fancy Bears, linked to Russian intelligence agencies, had previously targeted anti-doping organisations after revelations of the Russian doping conspiracy between 2011-2015 led to the country being banned from international competition.

The Fancy Bear group was accused of launching massive cyber attacks on the United States ahead of the 2016 presidential elections.

In February this year, Microsoft said the group of carried out cyber attacks on European institutions ahead of European elections.

In October 2018, a US court indicted seven agents said to be from Russian military intelligence following a probe into theft of electronic data from anti-doping agencies in 2016 and 2018.

The latest doping-related allegations against Moscow emerged after Russia handed over thousands of files and samples from its Moscow anti-doping laboratory to WADA in January.

However, last month, WADA said some of the files had been manipulated, sparking a new investigation.

Last week, Russia’s anti-doping chief, Yuri Ganus, said he expected the country to be banned from next year’s Tokyo Olympics and the next Winter Olympics, accusing unnamed Russian officials of doctoring the data handed over to WADA.