Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
×
Microsoft Security The Courts

Microsoft Launches A Counterattack Against Russia's 'Fancy Bear' Hackers (thedailybeast.com) 97

Kevin Poulsen writes on the Daily Beast: It turns out Microsoft has something even more formidable than Moscow's malware: Lawyers. Last year attorneys for the software maker quietly sued the hacker group known as Fancy Bear in a federal court outside Washington DC, accusing it of computer intrusion, cybersquatting, and infringing on Microsoft's trademarks... Since August, Microsoft has used the lawsuit to wrest control of 70 different command-and-control points from Fancy Bear... Rather than getting physical custody of the servers, which Fancy Bear rents from data centers around the world, Microsoft has been taking over the Internet domain names that route to them. These are addresses like "livemicrosoft[.]net" or "rsshotmail[.]com" that Fancy Bear registers under aliases for about $10 each. Once under Microsoft's control, the domains get redirected from Russia's servers to the company's, cutting off the hackers from their victims, and giving Microsoft a omniscient view of that servers' network of automated spies. "In other words," Microsoft outside counsel Sten Jenson explained in a court filing last year, "any time an infected computer attempts to contact a command-and-control server through one of the domains, it will instead be connected to a Microsoft-controlled, secure server."
This discussion has been archived. No new comments can be posted.

Microsoft Launches A Counterattack Against Russia's 'Fancy Bear' Hackers

Comments Filter:
  • by Anonymous Coward

    With a court order they can look up who is behind the compromised IP.
    Then they can call them up from "Microsoft Techsupport" to inform them that they've been infected with a virus!

    Now that's service!

  • by Anonymous Coward

    This is just Microsoft taking over random phishing domains, yes?

    I'm still amazed that the Russian state's superhackers have no state-level tools like the NSA's TAO program revealed to us all and are forced to phish everyone in the hopes of getting a day or two worth of access to an interesting email account and rob rubes of rubles. It's almost like the APT is just some low-level nobodies instead of a state-run organ of a major geopolitical power.

    • No it is taking over domains of command and control servers for botnets.
  • by Anonymous Coward

    We would all be trying to browse the internet with Netscape Navigator... on a Macintosh... using 5 1/4" floppy disks... and Linux and Unix would be nonexistent... and Hillary Clinton would be the president of the USA... in 2017.

    • by Anonymous Coward

      No.

      Linux was created on an Intel 386. Linux exists because of the AT&T lawsuit against BSD. Without that, it would more likely be a BSD world (or a fork of BSD, as BSD developers reject so many enhancements).

      UNIX has existed longer than Microsoft, and very likely will exist long after Microsoft is gone - so no problems there.

      • Re: (Score:2, Insightful)

        Comment removed based on user account deletion
        • by rtb61 ( 674572 )

          If Bill Gates mommy and daddy hadn't cooked the contracts with the aid of IBM lawyers, M$ would not even exist today, we would be complaining about IBM. If the Lotus eaters had not stuck to the dream of a thousand dollar spreadsheet and been smart with word perfect, M$ Office would not exist today and we would be cursing the Lotus Eaters. Greed has a very definite habit of taking down American companies to let new companies into the market, that and real arrogance, believing the tripe main stream media puts

          • Bullshit. You ask the founders of each of the things you listed, and Microsoft greed will not be any of the answers. The name Microsoft likely won't even come up. There's no one solution for everyone, there will always be a need for something else.
      • Actually Microsoft and Unix were both created around the same time in the 70's
      • Comment removed based on user account deletion
  • by Anonymous Coward

    "In other words," Microsoft outside counsel Sten Jenson explained in a court filing last year, "any time an infected computer attempts to contact a command-and-control server through one of the domains, it will instead be connected to a Microsoft-controlled, secure server."

    So, sorta like M$ $kype?

  • This is just Microsoft trying to make sure they're the only people putting malware on your computer. Old monopolies die hard. ;)

  • "Putin's hackers" (Score:4, Insightful)

    by manu0601 ( 2221348 ) on Sunday July 23, 2017 @07:19PM (#54864051)

    The paper calls the hacker group "Putin's hackers", and many comments here follow the trend. But Microsoft is a bit more prudent, as noted in TFA:

    Microsoft doesn’t name Russia in its suit, instead describing Fancy Bear as a “sophisticated and well-resourced organization” that remains unidentified.

    Indeed the hackers are probably Russians, and they seem to follow our perceived Russia government's interests, but reducing everything to the enemy's leader, which has to be evil, is basic war propaganda. That does not help thinking, and it drives us away from interesting questions: what are Russia's interests? Does Fancy Bear help serving them?

    • Don't bring the facts here. The Daily Beast needs the sensation for more of those ad-click dollars.

  • Last year attorneys for the software maker quietly sued the hacker group known as Fancy Bear in a federal court outside Washington DC, accusing it of computer intrusion, cybersquatting, and infringing on Microsoft's trademarks.

    Anyone who talks about "Fancy Bear" or "Cozy Bear" without irony is as much of an idiot at this point as those who still question Obama's birth certificate. It's all based on a CrowdStrike study paid for by the DNC (who wouldn't let the FBI touch it, another giant tell people choose

Think of it! With VLSI we can pack 100 ENIACs in 1 sq. cm.!

Working...