Russia-linked hackers leak acquired military secrets amidst Ukraine tensions

Home > Industry Analysis > Content

【Summary】A cybersecurity expert warns that a recent cyber-attack on Britain, in which sensitive military data was stolen and leaked onto the dark web, was likely sponsored by the Russian state. The attack targeted private security firm Zaun, which was responsible for protecting maximum security sites. The leaked data includes information about military sites such as HMNB Clyde and GCHQ. The hack has put the UK's nuclear submarine program at risk.

FutureCar Staff Sep 03, 2023 4:46 PM PT

Russia-linked hackers leak acquired military secrets amidst Ukraine tensions

A top cybersecurity expert from Ulster University, Kevin Curran, has accused the Kremlin of supporting a hacker group that stole sensitive military secrets from the UK and leaked them on the dark web. Curran believes that the recent attack by the Russia-linked group LockBit, which targeted private security firm Zaun and resulted in the theft of 10GB of data, was likely sponsored by the Russian state. The stolen information included details about sites such as HMNB Clyde and GCHQ.

The hack has raised concerns about the security of the UK's nuclear submarine program, Trident, as well as other sensitive military research sites like Porton Down. The hackers also leaked information about security equipment at RAF Waddington and Cawdor Barracks. The breach of Zaun's digital defenses is believed to be the work of a group with ties to Russian criminals.

LockBit, the alleged perpetrators of the hack, have been on the FBI's radar since 2020 and are suspected of stealing £80 million in ransom money. One member of the group, Mikhail Matveev, is wanted by US authorities for significant cyber attacks against businesses worldwide. The leaked information about GCHQ and other sensitive sites has raised concerns about the UK's preparedness to deal with cyber attacks.

Professor Curran warned that the UK's reliance on third-party suppliers to protect sensitive data makes it vulnerable to cyber attacks. He emphasized the seriousness of the situation, particularly in the context of escalating tensions with Russia. Labour MP Kevan Jones echoed these concerns and called on the government to explain why Zaun's computer systems were vulnerable.

In response to the breach, Zaun stated that it had taken measures to mitigate attacks on its systems and had reported the matter to the National Cyber Security Centre (NCSC). The company explained that the breach occurred through a rogue Windows 7 PC and that while they believed their cybersecurity software had stopped data transfer, LockBit managed to download some data. Zaun assured that the stolen data represented only a small portion of their stored data and that they specialize in high-security perimeter fencing for sites like prisons, military bases, and utilities.

The government has not yet responded to these concerns, stating that it does not comment on security matters.