Prime Minister Boris Johnson
The Market Online - At The Bell

Join our daily newsletter At The Bell to receive exclusive market insights

  • The United Kingdom’s National Cyber Security Centre (NCSC) has revealed a hacking group linked to Russian intelligence is targeting organisations searching for a COVID-19 cure 
  • The NCSC has revealed that the Russian hacking groups APT29 are most likely behind the attacks 
  • APT29 are one of the most notorious cybercrime groups in the world, rising to infamy in 2016 by successfully hacking the Clinton presidential campaign
  • The NSCS believes the group is almost certainly part of Russia’s intelligence services and were targeting intellectual property relating to the development of COVID-19 vaccines
  • The allegations have been supported by the Canadian Communications Security Establishment and the U.S. National Security Agency  

The United Kingdom’s National Cyber Security Centre (NCSC) has revealed a hacking group linked to Russian intelligence is targeting COVID-19 research organisations.

The stunning allegations have been levelled at a group known as APT29, whose aliases include The Dukes and Cozy Bear.  

APT29 are one of the most notorious cybercrime groups in the world, rising to infamy in 2016 by successfully hacking the Clinton Presidential campaign.

In announcements released today, both the Canadian Communications Security Establishment and the U.S. National Security Agency reinforced the group’s links to the Russian intelligence community. 

The NSA’s Cybersecurity Director Anne Neuberger said the APT29 has a long history of targeting governmental, diplomatic, think-tank, health care and energy organisations.  

APT29 targeted various organisations across Canada, the United States and the United Kingdom, which are currently developing a vaccine to treat COVID-19. The group used its own custom welfare known as WellMess and WellMail to target the organisations. 

The NCSC believes this was done with the intention of stealing information and intellectual property relating to the development and testing of COVID-19 vaccines.   

WellMess and WellMail are spearfishing systems, which target an organisation’s employees to glean sensitive information.

The NCSC Director of Operations, Paul Chichester condemned what he described as despicable attacks against people performing vital work to combat the coronavirus pandemic. 

“Working with our allies, the NCSC is committed to protecting our most critical assets and our top priority at this time is to protect the health sector. 

“We would urge organisations to familiarise themselves with the advice we have published to help defend their networks,” he said. 

More From The Market Online

Bullock: Hold call doesn’t rule out further tightening, if that’s required to beat inflation

Michele Bullock has made it very clear that the Reserve Bank is still strongly considering more rate hikes, especially if it’s the only

Reserve Bank holds rates at 4.35% as inflation battle drags on

The Reserve Bank has left the cash rate unchanged at 4.35%, warning inflation remains too high…
Global trade disruption concept with container ships blocked from entering or exiting the Strait of Hormuz. Maritime blockade and geopolitical tension affecting international supply chain and shipping routes.

Markets rally, ASX surges as US-Iran strike preliminary deal to reopen Strait of Hormuz

Australian shares rallied after the US and Iran confirmed a landmark ceasefire agreement, lifting miners, banks…
Close-up view of erupting molten lava, showcasing the intense heat and dynamic nature of volcanic activity.

Records up top, energy melt down, all eyes back on rech

Records on top. Regime turn underneath. Three U.S. indices closed at record highs into a holiday-shortened week. The Philadelphia Semiconductor Index ripped +5.53%...