False Flag

A False Flag is the pretending to be one hacking entity when you are in fact another. False flag operations make investigations significantly more difficult.  They are commonly used by nation-state hackers who seek to hide their attacks behind other well know entities in the hacking world.

Late last year the NSA released a warning that hacks in 35 countries appeared at first glance to come from Iran, but the intruders were in fact Russians who took over the other (Iran’s) country’s servers to spy in disguise. These false flag operations can be significant if a cyber attack by Russia on the United States is blamed on Iran, causing the U.S. to retaliate against Iran.

Related Terms: Attribution, Nation-State Hackers

Source: The Washington Post

 

For a deep dive into False Flags, here is a 45 min security researcher presentation: (you've been warned)
Share this on your social networks. Help Friends, Family, and Colleagues become more aware and secure.