{"id":35721,"date":"2022-05-10T10:45:00","date_gmt":"2022-05-10T10:45:00","guid":{"rendered":"http:\/\/cloudnewshub.com\/archives\/35721"},"modified":"2022-05-10T10:45:00","modified_gmt":"2022-05-10T10:45:00","slug":"ncsc-pins-viasat-cyber-attack-on-russia","status":"publish","type":"post","link":"https:\/\/cloudnewshub.com\/?p=35721","title":{"rendered":"NCSC pins Viasat cyber attack on Russia"},"content":{"rendered":"
<\/div>\n

The National Cyber Security Centre (NCSC), alongside the European Union (EU) and US authorities, have formally attributed the 24 February 2022 cyber attack on the systems of Viasat<\/a>, a satellite networking services provider, to Russian military intelligence, confirming previous speculation that this was the case.<\/p>\n

The cyber attack, which started approximately an hour prior to the initial Russian attack on Ukraine<\/a>, is believed to have primarily targeted Ukrainian military users of the Viasat KA-SAT network. However, it also caused service outages for thousands of users in Ukraine, and disrupted services in several other central European states.<\/p>\n

\u201cThis is clear and shocking evidence of a deliberate and malicious attack by Russia against Ukraine, which had significant consequences on ordinary people and businesses in Ukraine and across Europe,\u201d said foreign secretary Liz Truss.<\/p>\n

\u201cWe will continue to call out Russia\u2019s malign behaviour and unprovoked aggression across land, sea and cyber space, and ensure it faces severe consequences.\u201d<\/p>\n

An EU spokesperson said: \u201cThis unacceptable cyber attack is yet another example of Russia\u2019s continued pattern of irresponsible behaviour in cyber space, which also formed an integral part of its illegal and unjustified invasion of Ukraine. Such behaviour is contrary to the expectations set by all UN member states, including the Russian Federation, of responsible state behaviour and the intentions of states in cyber space.<\/p>\n

\u201cCyber attacks targeting Ukraine, including against critical infrastructure, could spill over into other countries and cause systemic effects putting the security of Europe\u2019s citizens at risk,\u201d said the spokesperson.<\/p>\n

\u201cThe European Union, working closely with its partners, is considering further steps to prevent, discourage, deter and respond to such malicious behaviour in cyber space. The European Union will continue to provide coordinated political, financial and material support to Ukraine to strengthen its cyber resilience.<\/p>\n

\u201cRussia must stop this war and bring an end to the senseless human suffering immediately,\u201d they added.<\/p>\n

Viasat said the attack was localised to a consumer-oriented partition of its KA-SAT network that is operated on its behalf by a Eutelset subsidiary, Skylogic, under a transition agreement, having recently acquired the wholesale broadband services business it had run with Eutelsat.<\/p>\n

Viasat believes the attackers were able to exploit a misconfigured VPN appliance to obtain remote access to the trusted management segment of the KA-SAT network.<\/p>\n

From there, they moved laterally to a specific network segment that is used to manage and operate the network, and exploited this to execute management commands to SurfBeam2 and SurfBeam 2+ residential modems, which overwrote key data in flash memory on the modem and left them unable to access the network.<\/p>\n

The affected modems can be restored by a factory reset, but as a precaution, Viasat is understood to have shipped more than 30,000 replacement devices to bring customers back online.<\/p>\n

Its investigation, which is being assisted by Mandiant, is ongoing.<\/p>\n","protected":false},"excerpt":{"rendered":"

The National Cyber Security Centre (NCSC), alongside the European Union (EU) and US authorities, have formally attributed the 24 February 2022 cyber attack on the systems of Viasat, a satellite networking services provider, to Russian military intelligence, confirming previous speculation that this was the case. The cyber attack, which started approximately an hour prior to […]<\/p>\n","protected":false},"author":1,"featured_media":35722,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[533],"tags":[],"class_list":["post-35721","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-it"],"_links":{"self":[{"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=\/wp\/v2\/posts\/35721","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=35721"}],"version-history":[{"count":0,"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=\/wp\/v2\/posts\/35721\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=\/wp\/v2\/media\/35722"}],"wp:attachment":[{"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=35721"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=35721"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cloudnewshub.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=35721"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}