Latest in Gear

Image credit: Kevin Lamarque / reuters

Russia, China and Iran target US elections with cyberattacks

It's the same playbook from 2016, Microsoft warns.
Karissa Bell, @karissabe
September 10, 2020
511 Shares
Share
Tweet
Share

Sponsored Links

Biden
Kevin Lamarque / reuters

Russia is once again trying to interfere with a US presidential election, according to a new disclosure from Microsoft that also names China and Iran.

The attacks have targeted both Joe Biden and Donald Trump’s campaigns, as well as other officials and groups associated with the 2020 elections. “What we’ve seen is consistent with previous attack patterns that not only target candidates and campaign staffers but also those they consult on key issues,” Microsoft writes in a statement. 

Microsoft notes that, so far, the “majority” of hacking attempts it has identified have not been successful and were “stopped by security tools built into our products.” But the groups behind the attacks have still been persistent.

For example, the Russian group behind the attacks, called Strontium, are the same hackers responsible for the nation’s 2016 interference campaign. So far, Strontium has targeted more than 200 organizations, including political campaigns and other groups affiliated with Republican and Democratic officials.

“Similar to what we observed in 2016, Strontium is launching campaigns to harvest people’s log-in credentials or compromise their accounts, presumably to aid in intelligence gathering or disruption operations,” Microsoft says. “Many of Strontium’s targets in this campaign... are directly or indirectly affiliated with the upcoming U.S. election as well as political and policy-related organizations in Europe.”

When it comes to China, Microsoft says it has detected “thousands” of attacks over the last six months from a group it calls “Zirconium.” Zirconium is targeting “people closely associated with U.S. presidential campaigns and candidates,” as well as “prominent individuals in the international affairs community.” Microsoft says it has identified people associated with 15 universities and 18 policy organizations as targets of Zirconium.

The attacks from Iran come from a group called “Phosphorous” that Microsoft “has tracked extensively for years.” Between May and June of this year, the group “unsuccessfully attempted to log into the accounts of administration officials and Donald J. Trump for President campaign staff.”

Even though Microsoft says it has so far been successful at thwarting most of these cyberattacks, the company is warning that states need “more federal funding” for election security, particularly during the coronavirus pandemic. “While the political organizations targeted in attacks from these actors are not those that maintain or operate voting systems, this increased activity related to the U.S. electoral process is concerning for the whole ecosystem,” the company says.

All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
Comment
Comments
Share
511 Shares
Share
Tweet
Share

Popular on Engadget

Best Buy slashes 50 percent off TCL's 75-inch 8-series Roku TV

Best Buy slashes 50 percent off TCL's 75-inch 8-series Roku TV

View
WoW's 'Shadowlands' expansion is delayed until later this year

WoW's 'Shadowlands' expansion is delayed until later this year

View
Nintendo agrees to $2 million settlement in Switch hacking lawsuit

Nintendo agrees to $2 million settlement in Switch hacking lawsuit

View
The next 'Super Smash Bros. Ultimate' fighter is Steve from 'Minecraft'

The next 'Super Smash Bros. Ultimate' fighter is Steve from 'Minecraft'

View
Netflix will only stream in 4K to Macs that have a T2 security chip

Netflix will only stream in 4K to Macs that have a T2 security chip

View

From around the web

Page 1Page 1ear iconeye iconFill 23text filevr