Bloomberg | fake pictures
Cyber attackers have targeted the cold supply chain needed to deliver COVID-19 vaccines, according to a report detailing a sophisticated operation likely backed by a nation-state.
Hackers appeared to be trying to disrupt or steal information about vital processes to keep vaccines cold as they moved from factories to hospitals and doctors’ offices.
According to the report by IBM’s Threat Intelligence Task Force, which advises businesses and the public sector on cybersecurity, they targeted organizations associated with a cold chain platform operated by the Gavi Vaccine Alliance, a public association. private sector to develop immunization in the poorest countries.
Many COVID-19 vaccines need to be kept cold to avoid spoiling. Pfizer and BioNTech vaccine should be stored at minus 70 ° C to minus 80 ° C, while Moderna injection should be transported at minus 20 ° C.
Related Downloads:
The attackers claimed to be executives from a Chinese ultra-cold refrigeration supplier to mount a phishing campaign to try to obtain usernames and passwords, according to the report.
Nick Rossmann, IBM’s global leader in threat intelligence, said he believed hackers were looking to disrupt the vaccine administration process or steal intellectual property.
“One of the faces is cyber espionage: how to get vaccinated? How does the refrigeration manufacturing process work? How do you manage the entire logistics chain? “He said.” There is also the possibility of disruption, the possibility of launching attacks that disrupt vaccines and their distribution to undermine confidence in the world. “
He added that it was vital to treat the vaccine supply chain as “a new kind of critical global infrastructure” to help them secure products that could help end the pandemic.
“These refrigeration companies will not have the same security tools as advanced financial institutions,” he said.
The news prompted the U.S. cyber agency on Wednesday to issue an official alert to other groups involved in the cold supply chain.
Claire Zaboeva, senior analyst of strategic cyberthreats at IBM, said it could be the “tip of the iceberg” in a wider global campaign as hackers try to find security loopholes and jump between companies and companies. governments involved in attacks. mass vaccination programs.
“It was a very well documented and well located campaign. And that potentially indicates a very competent person or team, ”he said.
The IBM report describes a hacking campaign in six countries targeting the European Commission’s customs and tax unit and organizations in the energy, manufacturing and technology sector. The campaign began in September and the task force discovered the threat in October.
IBM researchers do not know if the hackers were successful in breaking into the networks.
“Today’s report underscores the importance of cybersecurity due diligence at every stage of the vaccine supply chain,” said Josh Corman, chief strategist of the Healthcare Cybersecurity and Infrastructure Security Agency.
The FBI has been informed of the attacks. The Gavi vaccine alliance said it had “strong policies and processes to prevent such phishing and hacking attacks” and would continue to strengthen its security.
The European Commission said it was aware of the campaign and had taken “the necessary steps” to mitigate the attack. He added that he takes cybersecurity seriously and investigates every incident.
Additional information about Kadhim Shubber in Washington DC.
© 2020 The Financial Times Ltd. All rights reserved It must not be redistributed, copied or modified in any way.