U.S. neutralizes Russian malware that stole sensitive data for 20 years

May 10, 2023
Criminals stole sensitive data from computers in the U.S. and other NATO members over several years

Washington. May 10, 2023 — The US Department of Justice said it broke up a Russian cyber espionage operation that stole sensitive data from computers in the U.S. and other NATO members over several years.

Hackers used various versions of the Snake malware, traced by investigators to a unit of the Russian domestic intelligence service FSB called Turla.

Hundreds of computer systems in at least 50 countries were attacked for nearly 20 years, according to a U.S. government statement issued late on Tuesday. US investigators attribute the sophisticated malware to a unit of Russia's Federal Security Service (FSB).

“For 20 years, the FSB has relied on the Snake malware to conduct cyberespionage against the United States and our allies - that ends today,” said Assistant Attorney General Matthew G Olsen of the Justice Department’s National Security Division.

“We will continue to strengthen our collective defenses against the Russian regime’s destabilizing efforts to undermine the security of the United States and our allies,” said Attorney General Merrick B. Garland.

U.S. investigators worked with other governments, the Federal Bureau of Investigation ( FBI) and the U.S. Attorney's Office in an operation code-named "Medusa."

The FBI developed a program to disable the malware that the FSB unit had repeatedly renewed and revised to ensure it remained the Kremlin's most sophisticated hacking software.

For victims of the attacks outside the U.S., the FBI is working with local authorities to inform them about the malware in their countries.

©2023 dpa GmbH. Distributed by Tribune Content Agency, LLC.