this post was submitted on 04 Sep 2023
74 points (100.0% liked)

Ukraine

8045 readers
681 users here now

News and discussion related to Ukraine

*Sympathy for enemy combatants in any form is prohibited.

*No content depicting extreme violence or gore.

Donate to support Ukraine's Defense

Donate to support Humanitarian Aid

founded 2 years ago
MODERATORS
lisko@sopuli.xyz
doo@sh.itjust.works
Burstar@sopuli.xyz
74
UK: Russia uses malware for Android devices with the aim of stealing sensitive military information (lemmy.ca)
submitted 1 year ago by aihue@lemmy.ca to c/ukraine@sopuli.xyz
5 comments fedilink hide all child comments
 

On 31 August 2023, the National Cyber Security Centre (NCSC), alongside international partners, published a report on a malware campaign targeting Android mobile devices used by the Ukrainian military.

The malware, referred to as ‘Infamous Chisel’, has been used by the Russian cyber threat group known as Sandworm. NCSC has previously attributed Sandworm to the Russian General Staff Main Intelligence Directorate’s (GRU) Main Centre for Special Technologies (GTsST).

Infamous Chisel enables persistent access to, and the collation and exfiltration of data from, compromised Android devices. This includes targeting applications used by the Ukrainian military.

Infamous Chisel has highly likely been used with the aim of stealing sensitive military information. This activity demonstrates Russia’s continued use of cyber capabilities to support the invasion of Ukraine.

top 5 comments
sorted by: hot top controversial new old
[–] sneaky_b45tard@feddit.de 9 points 1 year ago (1 children)

It would be really interesting how they distribute the malware.

[–] sadreality@kbin.social -2 points 1 year ago (1 children)

Without prodiving details sounds like propaganda piece.

Russians doing this bad thing but we don't really tell you how or any defense tricks...

[–] Uniquitous@lemmy.one 4 points 1 year ago

The defense is to keep your device locked down and don't click on sketchy shit. There's not much point in trying to publish an exhaustive list of known bad links & email attachments, as that list would be obsolete within moments of its release.

[–] cheese_greater@lemmy.world 6 points 1 year ago* (last edited 1 year ago)

They should examine if GrapheneOS would work for their needs. A lot less attack surface as far as Android phones go.

Edit: Probably a good idea to avoid Telegram as well in favor of better platforms and apps like Signal, Matrix, etc. Not sure where Telegram is run from but I don't trust them

[–] Uniquitous@lemmy.one 4 points 1 year ago

Here are the gory details for any who are interested: https://media.defense.gov/2023/Aug/31/2003292099/-1/-1/0/INFAMOUS_CHISEL_20230831.PDF