(The Canadian Press)

(The Canadian Press)

Russian hackers seeking to steal COVID-19 vaccine data: intel agencies

It is believed APT29, also known as ‘the Dukes’ or ‘Cozy Bear’ was responsible

Canadian, British and U.S. security services say hackers they believe are working for Russian intelligence have been trying to steal research on COVID-19 vaccines from organizations in all three countries and around the world.

Canada’s Communications Security Establishment says the malicious cyberactivities were very likely undertaken to pilfer information and intellectual property relating to the development and testing of vaccines for the novel coronavirus.

The cyberspy agency says the clandestine activity is hindering response efforts at a time when health-care experts and medical researchers need every available resource to help fight the pandemic.

The CSE’s Centre for Cyber Security assesses that APT29, also known as ”the Dukes” or “Cozy Bear,” was responsible, and almost certainly operates as part of Russian intelligence services.

“The group uses a variety of tools and techniques to predominantly target governmental, diplomatic, think-tank, health-care and energy targets for intelligence gain,” says a joint advisory from the CSE and its allies.

“APT29 is likely to continue to target organizations involved in COVID-19 vaccine research and development, as they seek to answer additional intelligence questions relating to the pandemic.”

This assessment is supported by partners at Britain’s Government Communications Headquarters’ National Cyber Security Centre, the U.S. National Security Agency, and the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency.

The CSE is urging Canadian health organizations to review a technical advisory on the threat and to take any necessary actions to protect themselves. “We encourage them as well to contact the Cyber Centre if they suspect they have been targeted by cyberactors.”

The joint advisory says APT29 targeted COVID-19 vaccine research and development by scanning specific computer IP addresses of interest for vulnerabilities, a tactic that can help the group obtain login credentials to systems.

“This broad targeting potentially gives the group access to a large number of systems globally, many of which are unlikely to be of immediate intelligence value,” the advisory says.

“The group may maintain a store of stolen credentials in order to access these systems in the event that they become more relevant to their requirements in the future.”

By Jim Bronskill , The Canadian Press

Like us on Facebook and follow us on Twitter.

Want to support local journalism? Make a donation here.

Get local stories you won't find anywhere else right to your inbox.
Sign up here

Just Posted

Money and drugs seized. (Kelowna RCMP)
Drugs, weapons and $20,000 seized from Kelowna home

One man was released without charge, pending further investigation

Gem Lake Top, at Big White Ski Resort, seen at Jan. 8. (Big White Ski Resort)
Big White cancels $7.3M in lift tickets, accommodations due to COVID-19 orders

Since November, the ski resort has been forced to make several changes

The Greater Vernon Ringette Association is one of six Vernon sports groups benefitting from B.C.’s Local Sport Relief Fund. (Morning Star file photo)
Relief funds keep Okanagan in the game

Clubs at risk of closure due to inability to offer programs and fundraise

Clarence Fulton Secondary in Vernon reported its fourth exposure to the virus Thursday, Jan. 21, according to BC School Covid Tracker. (Kerry Hutter photo)
Three Vernon-area schools report positive COVID-19 cases

Two high schools and an elementary in Enderby report possible exposures

A dirty white Dodge Ram similiar to this one was reportedly stolen and then involved in a hit and run on Highway 97 in Lake Country Jan. 16. (Contributed)
Stolen truck that rammed car in Lake Country sought

Man in his 30s seen driving white Dodge Ram

The BC SPCA is adapting its fundraising after cancelling events due to COVID-19 restrictions. (Twila Amato - Black Press Media)
BC SPCA gets creative with fundraising as pandemic continues

The non-profit’s in-person fundraising events all had to be cancelled due to COVID-19 restrictions

Voting is the number one, bare minimum way to have your voice heard by government. (File photo)
Jocelyn’s Jottings: Want to make change? Here are some suggestions

As a citizen you have a voice, you just have to know who to talk to

Hedley residents are advised to not drink the water until a pump in one of its wells is fixed. Photo Andrea DeMeer
Hedley residents under do-not-consume-water order due to arsenic levels

Residents in Hedley remain under a do-not-consume-water order, due to higher than… Continue reading

Gov. Gen. Julie Payette takes the royal salute from the Guard of Honour as she makes her way deliver the the throne speech, Wednesday, September 23, 2020 in Ottawa. THE CANADIAN PRESS/Fred Chartrand
Gov. Gen. Julie Payette resigns, apologizes for ‘tensions’ at Rideau Hall

Payette, who is the Queen’s representative in Canada, has been the governor general since 2017

Cannabis bought in British Columbia (Ashley Wadhwani/Black Press Media)
Is it time to start thinking about greener ways to package cannabis?

Packaging suppliers are still figuring eco-friendly and affordable packaging options that fit the mandates of Cannabis Regulations

City of West Kelowna mowing services have been moved in house, saving the city from a potential quarter-million dollar increase in costs. (Pixabay)
West Kelowna cuts mowing contract, saves over $200k

Since forming in 2007, the City of West Kelowna has been contracting out their mowing services

Copper Mountain Mine is Princeton’s largest employer, with approximately 460 workers. Spotlight file photo.
Princeton Copper Mountain Mine worker tests positive for COVID

Town’s largest employer stresses its commitment to safe practices

Join Black Press Media and Do Some Good
Join Black Press Media and Do Some Good

Pay it Forward program supports local businesses in their community giving

Grounded WestJet Boeing 737 Max aircraft are shown at the airline’s facilities in Calgary, Alta., Tuesday, May 7, 2019. WestJet will operate the first commercial Boeing 737 Max flight in Canada today since the aircraft was grounded in 2019 following two deadly crashes. THE CANADIAN PRESS/Jeff McIntosh
Passengers unfazed as WestJet returns Boeing 737 Max to service on Vancouver flight

After a lengthy review process, Transport Canada cleared the plane to return to Canadian airspace

Most Read