January 29, 2022

News

News Network

United States Charges Russian Military Intelligence Officers for Cyber Crimes

9 min read

Michael R. Pompeo, Secretary of State

The criminal charges the Department of Justice (DOJ) and Federal Bureau of Investigation (FBI) announced today against six officers of the Russian General Staff Main Intelligence Directorate’s (GRU) Military Unit 74455 highlight once again Russia’s continuing disruptive, destructive, and destabilizing activities in cyberspace.

As the DOJ and FBI make clear, this Russian military intelligence unit unleashed some of the most destructive malware the world has seen.  The 2017 NotPetya cyber attack, which we publicly attributed previously to Russian military intelligence, was launched in Ukraine and caused billions of dollars in damage across Europe, Asia, and the Americas.  The GRU’s action disrupted the delivery of critical infrastructure services to the public, including in the transportation and healthcare sectors.

Meanwhile, the GRU’s targeting of the 2018 PyeongChang Winter Olympics, after Russia was penalized for anti-doping violations, shows Russia’s willingness to use cyber capabilities to lash out at those who would hold it accountable for its malign behavior.  Another GRU cyber attack described in the indictment resulted in the disruption of critical electrical distribution networks and financial services in Ukraine.  Additional malicious cyber activities included in the indictment targeted organizations investigating the 2018 nerve agent poisoning of Sergei Skripal and others in the UK.  Finally, the indictment describes GRU malicious cyber activity targeting government entities and private companies in Georgia and elections in France.

In sum, these cyber activities demonstrate a complete disregard for public safety and international stability.  Russia, which presents itself as a champion of stability in cyberspace, is in fact one of the global internet’s greatest disruptors.  We call on Russia to put an end to its irresponsible behavior.  Furthermore, we call upon all states that wish to see greater stability in cyberspace to join us in helping bring the actors charged today to justice.

News Network

  • Justice Department Reaches Settlement with Toledo Public Schools to Resolve Complaints of Race and Disability Discrimination in Student Discipline
    In Crime News
    The Department of Justice’s Civil Rights Division and the U.S. Attorney’s Office for the Northern District of Ohio today announced a settlement agreement with the Toledo Public Schools to address and prevent discriminatory discipline of students based on race or disability and to require appropriate language services for limited English proficient (LEP) parents on matters essential to their children’s education.  
    [Read More…]
  • Jury Convicts Medical Equipment Company Owners of $27 Million Fraud
    In Crime News
    A federal jury convicted Dallas area owners and operators of two durable medical equipment companies Thursday of one count of conspiracy to defraud the United States and to pay and receive health care kickbacks and one count of conspiracy to commit money laundering.
    [Read More…]
  • Justice Department Settles Lawsuit Alleging Disability-Based Discrimination in Residential Rental Properties in North Dakota
    In Crime News
    The Department of Justice announced today that Hampton Corporation Inc. and several related individuals and entities have agreed to settle a federal lawsuit alleging that they violated the Fair Housing Act (FHA) and Americans with Disabilities Act (ADA) by failing to design and construct apartment complexes and a rental office in North Dakota so they are accessible to people with disabilities. The Department of Justice previously resolved claims against the architect and engineer involved in the design of one of the four apartment complexes at issue in the lawsuit.
    [Read More…]
  • Cybersecurity and Informtion Technology: Federal Agencies Need to Strengthen Efforts to Address High-Risk Areas
    In U.S GAO News
    What GAO Found In March 2021, GAO issued its high-risk series update and emphasized that federal agencies' needed to implement numerous critical actions to strengthen the nation's cybersecurity and information technology (IT) management efforts. In the update, GAO reiterated the importance of agencies addressing four major cybersecurity challenges facing the nation: (1) establishing a comprehensive cybersecurity strategy and performing effective oversight, (2) securing federal systems and information, (3) protecting cyber critical infrastructure, and (4) protecting privacy and sensitive data. Overall, the federal government has to move with a greater sense of urgency to fully address key cybersecurity challenges. In particular: Develop and execute a more comprehensive federal strategy for national cybersecurity and global cyberspace . In September 2020, GAO reported that the White House's national cyber strategy and associated implementation plan addressed some, but not all, of the desirable characteristics of national strategies, such as goals and resources needed. Mitigate global supply chain risks . GAO reported in December 2020 that few of the 23 civilian federal agencies it reviewed implemented foundational practices for managing information and communication technology supply chain risks. Address weaknesses in federal agencies information security programs. GAO reported in July 2019 that 23 agencies almost always designated a risk executive, but had not fully incorporated other key risk management practices, such as establishing a process for assessing agency-wide cybersecurity risks. In its March update, GAO also stressed the importance of the Office of Management and Budget (OMB) and federal agencies fully implementing critical actions recommended to improve the management of IT to better manage tens of billions of dollars in IT investments. GAO emphasized, for example, that OMB had demonstrated its leadership commitment to improving IT management, but sustaining this commitment was critically important; twenty-one of 24 federal agencies had not yet implemented recommendations to fully address the role of Chief Information Officers, including enhancing their authorities; OMB and agencies needed to address modernization challenges and workforce planning weaknesses; and agencies could take further action to reduce duplicative IT contracts and reduce the risk of wasteful spending. Until OMB and federal agencies take critical actions to strengthen efforts to address these important high-risk areas, longstanding and pervasive weaknesses will likely continue to jeopardize the nation's cybersecurity and management of IT. Why GAO Did This Study The nation's critical infrastructures and federal agencies are dependent on IT systems and electronic data to carry out operations and to process, maintain, and report essential information. Each year, the federal government spends more than $100 billion on cybersecurity and IT investments. GAO has long stressed the continuing and urgent need for effective cybersecurity, as underscored by recent events that have illustrated persistent and evermore sophisticated cyber threats and incidents. Moreover, many IT investments have failed, performed poorly, or suffered from ineffective management. Accordingly, GAO has included information security on its high-risk list since 1997 and added improving the management of IT acquisitions and operations in 2015. In its March 2021 high-risk series update, GAO reported that significant attention was needed in both of these important areas. GAO was asked to testify on federal agencies' efforts to address cybersecurity and the management of IT. For this testimony, GAO relied on selected products it previously issued.
    [Read More…]
  • Pennsylvania Man Pleads Guilty to Attempting to Provide Material Support to ISIS
    In Crime News
    A Pennsylvania man pleaded guilty today to one count of attempting to provide material support to the Islamic State of Iraq and al-Sham (ISIS), a designated foreign terrorist organization.
    [Read More…]
  • Disabilities Reported by Prisoners: Survey of Prison Inmates, 2016
    In Justice News
    (Publication)
    This brief presents findings based on data collected in the 2016 Survey of Prison Inmates, a survey conducted through face-to-face interviews with a national sample of state and federal prisoners across a variety of topics, such as their demographic characteristics, socio-economic background, health, and involvement with the criminal justice system.
    3/30/2021, NCJ 252642, Mariel Alper, Jennifer Bronson, Laura M. Maruschak [Read More…]
  • Thirteen Defendants Plead Guilty in $126 Million Compounding Fraud Scheme
    In Crime News
    Thirteen defendants, including three compounding pharmacy owners, three physicians, two pharmacists, and three patient recruiters, pleaded guilty in the Southern District of Texas to a years-long, multi-state scheme to defraud the U.S. Department of Labor’s (DOL) Office of Workers’ Compensation Programs (OWCP) and TRICARE.
    [Read More…]
  • Uruguay Independence Day
    In Crime Control and Security News
    Antony J. Blinken, [Read More…]
  • Research advances curative options for people with sickle cell
    In Human Health, Resources and Services
    For nearly two decades, [Read More…]
  • Secretary Antony J. Blinken With Dana Bash of CNN State of the Union
    In Crime Control and Security News
    Antony J. Blinken, [Read More…]
  • United Airlines to Pay $49 Million to Resolve Criminal Fraud Charges and Civil Claims
    In Crime News
    United Airlines Inc. (United), the world’s third largest airline, has agreed to pay over $49 million to resolve criminal charges and civil claims relating to fraud on postal service contracts for transportation of international mail.
    [Read More…]
  • Samoa Independence Day
    In Crime Control and Security News
    Antony J. Blinken, [Read More…]
  • Texas Plastics Corporation Will Pay Nearly $3 Million for Violating Clean Air Act
    In Crime News
    Formosa Plastics Corporation, Texas, has agreed to pay $2.85 million in civil penalties and to improve its risk management program to resolve alleged violations of the Chemical Accident Prevention Provisions of the Clean Air Act (CAA) at its petrochemical manufacturing plant in Point Comfort, Texas.
    [Read More…]
  • [Protest of Forest Service Contract Award for Publication Support Services]
    In U.S GAO News
    A firm protested a Forest Service contract award for publication support services, contending that the Forest Service conducted improper post-best and final offer (BAFO) discussions with the awardee. GAO held that the: (1) Service's consideration of the awardee's subcontracting approach constituted discussions and therefore it should have reopened discussions and allowed bidders to resubmit BAFO; and (2) Service conducted improper discussions with only the awardee after BAFO submission. Accordingly, the protest was sustained and GAO recommended that the Forest Service: (1) reopen discussions and request best and final offers; (2) make award to the bidder whose bid is determined to be the most advantageous to the government; and (3) reimburse the protester for its protest costs.
    [Read More…]
  • Critical Infrastructure Protection: Treasury Needs to Improve Tracking of Financial Sector Cybersecurity Risk Mitigation Efforts
    In U.S GAO News
    The federal government has long identified the financial services sector as a critical component of the nation's infrastructure. The sector includes commercial banks, securities brokers and dealers, and providers of the key financial systems and services that support these functions. Altogether, the sector holds about $108 trillion in assets and faces a variety of cybersecurity-related risks. Key risks include (1) an increase in access to financial data through information technology service providers and supply chain partners; (2) a growth in sophistication of malware—software meant to do harm—and (3) an increase in interconnectivity via networks, the cloud, and mobile applications. Cyberattacks that exploit risks can occur against either public or private components of the sector. For example, in February 2016, hackers were able to install malware on the Bangladesh Central Bank's system through a service provider, which then directed the Federal Reserve Bank of New York to transfer money to accounts in other Asian countries. This attack resulted in the theft of approximately $81 million. Several industry groups and firms are taking steps to enhance the security and resilience of the U.S. financial services sector through a broad range of cyber risk mitigation efforts. These efforts include coordinating within the sector through groups such as the Financial Services Sector Coordinating Council and the Financial Systemic Analysis and Resilience Center, conducting industrywide incident response exercises, sharing threat and vulnerability information, developing and providing guidance in conducting risk assessments, and offering cybersecurity-related training. The Departments of Homeland Security and the Treasury and federal financial regulators are also taking multiple steps to support cybersecurity and resilience through risk mitigation efforts. Among other things, federal agencies provide cybersecurity expertise and conduct simulation exercises related to cyber incident response and recovery. Treasury, as the designated lead agency for the financial sector, plays a key role in supporting many of the efforts to enhance the sector's cybersecurity and resiliency. For example, Treasury's Assistant Secretary for Financial Institutions serves as the chair of the committee of government agencies with sector responsibilities, and Treasury coordinates federal agency efforts to improve the sector's cybersecurity and related communications. However, Treasury does not track efforts or prioritize them according to goals established by the sector for enhancing cybersecurity and resiliency. Treasury also has not fully implemented GAO's previous recommendation to establish metrics related to the value and results of the sector's risk mitigation efforts. Further, the 2016 sector-specific plan, which is intended to direct sector activities, does not identify ways to measure sector progress and is out of date. Among other things, the sector-specific plan lacks information on sector-related requirements laid out in the 2019 National Cyber Strategy Implementation Plan . Unless more widespread and detailed tracking and prioritization of efforts occurs according to the goals laid out in the sector-specific plan, the sector could be insufficiently prepared to deal with cyber-related risks, such as those caused by increased access to data by third parties. For decades, the federal government has taken steps to protect the nation's critical infrastructures. The financial services sector's reliance on information technology makes it a leading target for cyber-based attacks. Recent high-profile breaches at commercial entities have heightened concerns that data are not being adequately protected. Under the Comptroller General's authority, GAO initiated this review to (1) describe the key cyber-related risks facing the financial sector; (2) describe steps the financial services industry is taking to share information on and address risks to its sector; and (3) assess steps federal agencies are taking to enhance the security and resilience of the sector. GAO analyzed relevant reports and information to determine risks and mitigation efforts and compared agency efforts against federal policies and guidance. GAO also interviewed officials at 16 private sector entities, two self-regulatory organizations, and eight federal agencies, including the Department of the Treasury. GAO is making recommendations to Treasury to track and prioritize the sector's cyber risk mitigation efforts, and to update the sector's plan with metrics for measuring progress and information on how sector efforts will meet sector goals and requirements, including those contained within the National Cyber Strategy Implementation Plan. Treasury generally agreed with the recommendations. For more information, contact Nick Marinos at (202) 512-9342 or marinosn@gao.gov or Michael Clements at (202) 512-7763 or ClementsM@gao.gov.
    [Read More…]
  • Additional Departures of U.S. Citizens and Lawful Permanent Residents from Afghanistan
    In Crime Control and Security News
    Antony J. Blinken, [Read More…]
  • Secretary Antony J. Blinken With Santi Dewi of IDN Times
    In Crime Control and Security News
    Antony J. Blinken, [Read More…]
  • Woman sentenced for smuggling over five kilograms of meth
    In Justice News
    A 51-year-old resident [Read More…]
  • A Cosmic Baby Is Discovered, and It’s Brilliant
    In Space
    Born from an exploded [Read More…]
  • Woman admits to tax fraud on behalf of herself and many others
    In Justice News
    A Texas tax preparer has [Read More…]

Crime

Network News © 2005 Area.Control.Network™ All rights reserved.