Diplomats Fall For Cheap BMW Ad Giving Russian Hackers Access To Embassy Computers | Carscoops
The disguised attack targeted 22 of the 80 foreign embassies located in Kyiv, Ukraine, luring dozens of diplomats
14 hours ago
A BMW 5-Series is admittedly a fitting option for a diplomat, which is why the Russian intelligence agency used it as a trap to hack into the computers of Ukraine embassies. Dozens of diplomats reportedly clicked on an advertisement for an attractively priced used BMW, unwillingly providing hackers access to their personal computers.
The unconventional but clever act of espionage started with a legitimate ad for a used 2011 BMW 5-Series sedan from the F10 generation, which was shared via email by a Polish diplomat. Hackers from the Russian APT29 unit – nicknamed Cozy Bear – took notice, embedding malicious software in the unsuspecting leaflet before it reached the diplomats.
More: Tesla Scammers Hack Linus Tech Tips, One Of YouTube’s Largest Channels
Reuters reports that the seller got a few calls about the vehicle, only to realize that the asking price on the leaflet had been further reduced to €7.5k ($8.3k) without his knowledge. It turns out that this price drop was done by Russian hackers in order to lure more diplomats into clicking the ad. The malicious software was integrated into a photo gallery of the used vehicle, infecting the PC of anyone that clicked on the link.
A report by cybersecurity firm Palo Alto Networks, which will be published in full on Wednesday, suggests that hackers targeted at least 22 of the 80 foreign embassies located in Kyiv, Ukraine. The source of the cyber attack was the ATP29 unit, identified by the US and British agencies as a part of the Russian foreign intelligence service. The same group recently conducted a campaign against NATO, the EU, and Africa, using similar digital tools and techniques which eventually gave away their identity.
The seller who works at the Polish Ministry of Foreign Affairs didn’t reveal his identity but confirmed that the vehicle is still available. Speaking of which, the 12-year-old premium sedan has 266,000 km (165,295 miles) on the clock, and comes fitted with a 2.0-liter diesel powertrain mated to a manual gearbox. After all this mess, the owner now intends of selling the car in Poland, so he can avoid any extra drama.
advertisement scroll to continue