Nato Investigates Hacker Sale Of Missile Firm Data Bbc 3871

Nato investigates hacker sale of missile firm data – BBC

By Joe Tidy and Benedict Garman
BBC News

Nato is assessing the impact of a data breach of classified military documents being sold by a hacker group online.
The data includes blueprints of weapons being used by Nato allies in the Ukraine war.
Criminal hackers are selling the dossiers after stealing data linked to a major European weapons maker.
MBDA Missile Systems admitted its data was among the stash but claimed none of the classified files belong to the firm.
The pan-European company, which is headquartered in France, said its information was hacked from a compromised external hard drive, adding that it was cooperating with authorities in Italy, where the data breach took place.
It is understood investigations are centred around one of MBDA's suppliers.
In a statement, a Nato spokesperson said: "We are assessing claims relating to data allegedly stolen from MBDA. We have no indication that any Nato network has been compromised."
Cyber criminals, operating on Russian and English forums, are selling 80GB of the stolen data for 15 Bitcoins (approximately £273,000) and claimed to have sold the stash to at least one unknown buyer so far.
In their advert for the stolen data, the hackers claimed to have "classified information about employees of companies that took part in the development of closed military projects" as well as "design documentation, drawings, presentations, video and photo materials, contract agreements and correspondence with other companies".
A free 50MB sample of the data, seen by the BBC, includes documents labelled "NATO CONFIDENTIAL", "NATO RESTRICTED" and "Unclassified Controlled Information".
In addition to the sample, the criminals supplied additional documents by email, including two marked "NATO SECRET".
Nato's classification levels are:
The hackers would not confirm whether or not the material had come from more than one hacked source.
The files, which the BBC has not been been able to independently verify, detail a "communications intelligence" mission by a US air squadron carried out at the end of 2020 in Estonia over the Baltics.
It includes the call logs, full name, phone number and GPS coordinates of a person allegedly at the centre of the operation.
A former Nato official said: "There's a lot of over-classification in Nato but these labels matter. They are applied by the originator of the information and NATO SECRET is not applied lightly.
"This really is the kind of information Nato doesn't want out there in the public."
He added that the chances of the documents having been declassified were slim bearing in mind most of the files appeared to have been created between 2017 and 2020.
The sample files also included a presentation that appeared to detail the inner workings of the Land Ceptor CAMM (Common Anti-Air Modular Missile), including the precise location of the electronic storage unit within it.
One of these was recently sent to Poland for use in the Ukraine conflict as part of the Sky Sabre system and is operational.
MBDA Missile Systems has not disputed that its information had been breached but said: "The company's internal verification processes indicate that the data made available online are neither classified data nor sensitive."
However, some of the documents known to have been stolen from MBDA are labelled as "proprietary information not to be disclosed or reproduced".
MBDA Missile Systems was created in December 2001 after the merger of missile systems companies in France, Italy and the UK.
It has has 13,000 employees and is a joint venture of Airbus, BAE Systems and Leonardo.
Last year it posted revenue of £3.5bn and counts the UK Ministry of Defence, US military, the European Union and Nato as customers of its weapons systems.
74% of ransomware revenue goes to Russian hackers
Evil Corp: Searching for the world's most wanted hackers
Biden says Trump ideology threatens US democracy
Gun jams during bid to kill Argentina vice-president
UN inspectors remain at Russian-held nuclear plant
Quiz of the week: Who's suing the FBI?
How this year’s biggest stories all connect. Video
Why Canada's ERs are struggling to stay open
My ‘Parasite’-style apartment was like a five-star hotel. Video
Were results in Kenyan election manipulated?
Backpacker who became an accidental outback cook. Video
The inside scoop on ice cream innovation
India state deploys 300 people to catch elusive leopard
Why winemakers are turning to Sweden
Why Dijon mustard disappeared from France
Ten of the world's most ingenious buildings
A pizza topping that divides the world
© 2022 BBC. The BBC is not responsible for the content of external sites. Read about our approach to external linking.


Leave a Comment

Leave a Reply

Your email address will not be published.

Federal Court finds cyber risk management is a critical obligation for financial services firms – Allens

GLOBAL ARENA HOLDING, INC. Management's Discussion and Analysis of Financial Condition and Results of Operations (form 10-Q) –

Only 3 weeks left for small businesses to claim up to $5,000 from a class action settlement with Visa, M – Benzinga

Killeen ISD board talks cyber security, ransom | Education | – The Killeen Daily Herald