What we know about Fancy Bears hack team

Discussion in 'Forum for discussion of ANTICHAT' started by K800, 16 Sep 2016.

  1. K800

    K800 Nobody's Fool

    Joined:
    25 Dec 2010
    Messages:
    2,191
    Likes Received:
    3,828
    Reputations:
    372
    [​IMG]A hacking group calling itself Fancy Bears has stolen athletes' medical data from the World Anti-Doping Agency (Wada).

    The details show which athletes were allowed to take otherwise banned substances for medical reasons.

    The group says it will "go on exposing the athletes who violate the principles of fair play by taking doping substances".

    But who are the Fancy Bears and why are they doing it?

    A lot of fingers are pointing at Russia.

    According to cyber security company Crowdstrike, Fancy Bears are a Russian-based threat group.

    Crowdstrike's co-founder, Dmitri Alperovitch, has written a blog which says the group is also known as Sofacy or APT 28.

    He says their style "closely mirrors the strategic interests of the Russian government".

    There are also suggestions it may have links with the Main Intelligence Agency.
    Richard Ings, the former Australian Anti-Doping Agency chief, agrees with Dmitri on their nationality.

    In an article in The Guardian he says he "believes the hacking is the Russians taking revenge on Wada for finding state-sponsored doping across many sports in the country".

    There is no mention on the Fancy Bears website about their location

    However, many of the comments on their early posts are written in Russian - and they are in support of the hack.

    Then there's the Russian Embassy Twitter account, which certainly isn't doing much to deter suggestions about the hackers' origins.

    Wada has also said that Fancy Bears are Russian in their statement confirming the validity of the documents.

    But Russia's denied having anything to do with the hack.

    Some people have linked the group with other attacks

    The New York Times said the Bears are possibly the group who "compromised the Democratic National Committee's servers".

    Crowdstrike also refers to this in its blog, saying they "identified the hacking group as the mastermind behind this summer's DNC email leak" - when thousands of emails from the Democrat Party were made public.

    In addition, they link Fancy Bear to attacks on France's TV5 Monde in 2015 and the German Bundestag.

    We don't actually know anything about them for sure

    Fancy Bears have alluded to the fact they are linked with Anonymous.

    Their website says: "We are Anonymous. We are Legion. We do not forgive. We do not forget. Expect us. Anonymous - #OpOlympics"

    But nothing has been confirmed and Anonymous haven't posted anything to confirm the links.

    Everything about their location, motivation and profile is all speculation at the moment.

     
    #1 K800, 16 Sep 2016
    Last edited: 28 Mar 2022