'Energetic Bear' Is Attacking Our Energy Sector
'The potential for sabotage is there,' says Symantec director
By Evann Gastaldo, Newser Staff
Posted Jul 1, 2014 8:22 AM CDT
'The potential for sabotage is there,' says Symantec director.   (Shutterstock)

(Newser) – "Energetic Bear" has roared its way into the Western oil and gas sector: Over the past year and a half, more than 1,000 companies in 84 countries have been hit by the malware, which was first uncovered in August 2012 and further described in a report released yesterday by Symantec. In the report, Symantec notes the hackers (a group it calls "Dragonfly") have "all the markings of being state-sponsored"; it sees them as likely "based in Eastern Europe," with the Financial Times reporting they have "apparent" ties to Russia and the New York Times more explicitly calling them "Russian hackers." Most of the attacks have been on companies in Spain and the US, followed by France, Italy, and Germany.

The hackers appear to be engaging in industrial espionage, but, as Symantec newly reveals, they can also take over industrial control systems remotely—an ability that makes the Energetic Bear malware similar to the Stuxnet computer worm. The New York Times notes the Dragonfly hackers are said have become more "aggressive and sophisticated" over the past six months, and Symantec details the new "attack vector" that enables their remote-control capability. The hackers infiltrated three top manufacturers of industrial control systems and inserted their malware into the software updates those companies' clients used; upon download, the clients' systems were infected. While there's no evidence the hackers intend to do physical damage, "the potential for sabotage is there," says a Symantec director.

More From Newser
My Take on This Story
To report an error on this story,
notify our editors.
'Energetic Bear' Is Attacking Our Energy Sector is...
4%
6%
4%
5%
75%
6%
Show results without voting
You Might Like
Comments
Showing 3 of 20 comments
dan6807
Jul 20, 2014 2:41 PM CDT
Name says it all not European, Chinese.
Lou Bernardo
Jul 2, 2014 7:17 AM CDT
The menatly ill hackers should be caught and have their hands removed so they can't use a keyboard to program a virus.
CasperImproved
Jul 1, 2014 12:56 PM CDT
Maybe malicious hackers should face penalties much steeper than any they have had in the past. That would of course not stop the hacking, but it might stem the bulk of hackers away from the pool.