Get 40% Off
🤯 This Tech Portfolio is up 29% YTD! Join Now to Get April’s Top PicksGet The Picks – Just 99 USD

Microsoft says Russia-linked hackers target sports organizations

Published 10/28/2019, 08:17 PM
Updated 10/28/2019, 08:17 PM
© Reuters. FILE PHOTO: Microsoft holds device-launching event in Barcelona ahead of the 2019 Mobile World Congress

© Reuters. FILE PHOTO: Microsoft holds device-launching event in Barcelona ahead of the 2019 Mobile World Congress

(Reuters) - Microsoft Corp (NASDAQ:MSFT) said it has tracked "significant" cyberattacks coming from a group it calls "Strontium" or "Fancy Bear", targeting anti-doping authorities and global sporting organizations.

The group, also called APT28, has been linked to the Russian government, Microsoft said in a blog post. (https://

At least 16 national and international sporting and anti-doping organizations across three continents were targeted in the attacks which began on Sept. 16, according to the company.

The company said some of these attacks had been successful, but the majority had not. Microsoft has notified all customers targeted in these attacks.

Strontium, one of the world's oldest cyber espionage groups, has also been called Sofancy and Pawn Storm by a range of security firms and government officials. Security firm CrowdStrike has said the group may be associated with the Russian military intelligence agency GRU.

Microsoft said Strontium reportedly released medical records and emails taken from sporting organizations and anti-doping officials in 2016 and 2018, resulting in an indictment in a federal court in the United States in 2018.

The software giant added that the methods used in the most recent attacks were similar to those used by Strontium to target governments, militaries, think-tanks, law firms, human rights organizations, financial firms and universities around the world.

Strontium's methods include spear-phishing, password spray, exploiting internet-connected devices and the use of both open-source and custom malware, it added.

Microsoft has in the past taken legal steps o prevent Strontium from using fake Microsoft internet domains to execute its attacks.

By August last year, Microsoft had shut down 84 fake websites in 12 court-approved actions over the past two years. (https://reut.rs/2JsrjjW)

© Reuters. FILE PHOTO: Microsoft holds device-launching event in Barcelona ahead of the 2019 Mobile World Congress

Microsoft said at the time that hackers linked to Russia's government sought to launch cyber attacks on U.S. political groups.

Latest comments

Risk Disclosure: Trading in financial instruments and/or cryptocurrencies involves high risks including the risk of losing some, or all, of your investment amount, and may not be suitable for all investors. Prices of cryptocurrencies are extremely volatile and may be affected by external factors such as financial, regulatory or political events. Trading on margin increases the financial risks.
Before deciding to trade in financial instrument or cryptocurrencies you should be fully informed of the risks and costs associated with trading the financial markets, carefully consider your investment objectives, level of experience, and risk appetite, and seek professional advice where needed.
Fusion Media would like to remind you that the data contained in this website is not necessarily real-time nor accurate. The data and prices on the website are not necessarily provided by any market or exchange, but may be provided by market makers, and so prices may not be accurate and may differ from the actual price at any given market, meaning prices are indicative and not appropriate for trading purposes. Fusion Media and any provider of the data contained in this website will not accept liability for any loss or damage as a result of your trading, or your reliance on the information contained within this website.
It is prohibited to use, store, reproduce, display, modify, transmit or distribute the data contained in this website without the explicit prior written permission of Fusion Media and/or the data provider. All intellectual property rights are reserved by the providers and/or the exchange providing the data contained in this website.
Fusion Media may be compensated by the advertisers that appear on the website, based on your interaction with the advertisements or advertisers.
© 2007-2024 - Fusion Media Limited. All Rights Reserved.