3 ways activists are being targeted by cyberattacks

cyber threat

(Unsplash, 2019)

This article is brought to you thanks to the collaboration of The European Sting with the World Economic Forum.

Author: Friedhelm Weinberg, Executive Director, HURIDOCS


When activists open their inboxes, they find more than the standard spam messages telling them they’ve finally won the lottery.

Instead, they receive highly sophisticated emails that look like they are real, purport to be from friends and invite them to meetings that are actually happening. The catch is: at one point the emails will attempt to trick them.

Phishing for accounts, not compliments

In 2017, the Citizen Lab at the University of Toronto and the Egyptian Initiative for Personal Rights, documented what they called the “Nile Phish” campaign, a set of emails luring activists into giving access to their most sensitive accounts – email and file-sharing tools in the cloud. The Seoul-based Transitional Justice Working Group recently warned on its Facebook page about a very similar campaign.

As attacks like these have mounted in recent years, civil society activists have come together to defend themselves, support each other and document what is happening. The Rarenet is a global group of individuals and organizations that provides emergency support for activists – but together it also works to educate civil society actors to dodge attacks before damage is done. The Internet Freedom Festival is a gathering dedicated to supporting people at risk online, bringing together more than 1,000 people from across the globe.

 

The emails from campaigns like Nile Phish may be cunning and carefully crafted to target individual activists, but they are socially sophisticated – they are not cutting-edge technology. Protection is stunningly simple: do nothing. Simply don’t click the link and enter information – as hard as it is when you are promised something in return.

Often digital security is about being calm and controlled as much as it is about being savvy in the digital sphere. And that is precisely what makes it difficult for passionate and stressed activists!

The million-dollar virus

Unfortunately, calm is not always enough. Activists have also been targeted with sophisticated spyware that is incredibly expensive to procure and difficult to spot. Ahmed Mansoor, a human-rights defender from the United Arab Emirates, received messages with malware (commonly known as computer viruses) that cost one million dollars on the grey market, where unethical hackers and spyware firms meet.

Shutting down real news with fake readers

Both phishing and malware are attacks directed against the messengers, but there are also attacks against the message itself. This is typically achieved by directing hordes of fake readers to the real news – that is, by sending so many requests through bot visitors to websites that the servers break down under the load. Commonly referred to as “denial of service” attacks, these bot armies have also earned their own response from civil society. Specialised packages from Virtual Road or Deflect sort fake visitors from real ones to make sure the message stays up.

A chart showing how distributed denial of service (DDoS) attacks have grown over time.

How distributed denial of service (DDoS) attacks have grown.
Image: Kinsta.com; data from EasyDNS

Recently, these companies also started investigating who is behind these attacks– a notoriously difficult task, because it is so easy to hide traces online. Interestingly, whenever Virtual Road were so confident in their findings that they publicly named attackers, the attacks stopped. Immediately.

Online, as offline, one of the most effective ways to ensure that attacks end is to name the offenders, whether they are cocky kids or governments seeking to stiffle dissent.

But more important than shaming attackers is supporting civil society’s resilience and capacity to weather the storms. For this, digital leadership, trusted networks and creative collaborations between technologists and governments will pave the way to an internet where the vulnerable are protected and spaces for activism are thriving.

the sting Milestone

Featured Stings

Can we feed everyone without unleashing disaster? Read on

These campaigners want to give a quarter of the UK back to nature

How to build a more resilient and inclusive global system

Stopping antimicrobial resistance would cost just USD 2 per person a year

EU job-search aid worth €2 million for 500 former shipbuilding workers in Spain

Manufacturing reimagined: from improved productivity to profitable growth

Europe is progressing most towards these UN Sustainability Goals: A report card for Europe

Tropical Cyclone Idai affects 1.5 million across Mozambique and Malawi, as UN ramps up response

Erasmus+: a turning point in the lives of 5 million European students

Security Council welcomes Yemen breakthrough, but lasting peace remains a ‘daunting task’

Use space technology to build a better world for all, urges UN chief

Global migration, by the numbers: who migrates, where they go and why

State aid: Commission approves €199.45 million Italian support to compensate Alitalia for damages suffered due to coronavirus outbreak

Greece bailout programme: Full agreement after marathon negotiations on debt relief between IMF and Eurozone

‘The welfare of the Libyan people’ the UN’s sole agenda for the country, says Guterres in Tripoli

The Sino-American trade conflict may be resolved soon

New Zealand Prime Minister opens door to 4-day working week

Eurozone: Bankers-politicians rig keeps robbing taxpayers

This farmer used an age-old technique to save his soil and now his farm is prospering

Labels for tyres: deal for greener and safer road transport

Coronavirus: EU guidance for a safe return to the workplace

European Commission recommends to the European Council (Article 50) to find that decisive progress has been made in Brexit negotiations

Islamophobia is driving more US Muslims to become politically engaged, suggests report

Backed by UN agency, countries set to take on deadly livestock-killing disease

The importance of pre-departure training for a better understanding of global health issues

Road use charges: reforms aim to improve fairness and environmental protection

4 steps to developing responsible AI

Primary Healthcare: Back to the Basics

Major UN aid operation for 650,000 gets underway across Syria-Jordan border

Bias in AI is a real problem. Here’s what we should do about it

Migration crisis update: The “Habsburg Empire” comes back to life while EU loses control

How the Great Famine inspired Irish people to help Native Americans in the fight against COVID-19

Transport Committee approves major reform of road transport sector

The climate and COVID-19: a convergence of crises

UN rights chief ‘extremely concerned’ over deadly crackdown on protesters in Iran

Amid pandemic detours, mental health matters

‘Historic moment’ for people on the move, as UN agrees first-ever Global Compact on migration

5 factors driving the Chinese lawtech boom

Member States’ compliance with EU law in 2019: more work needed

Healthcare’s a human right, not ‘a privilege for the rich’ UNAIDS argues at Davos

Von der Leyen in Ireland: Our mutual solidarity is here to stay

Quality coffee can boost local economies and benefit farmers – here’s how

Mobile technology saving lives: changing healthcare with simple technology solutions

Merry Christmas from Erdogan, Putin, Mogherini and the Polish firefighter

Violent disorder is on the rise. Is inequality to blame?

It’s time for the world to stand up behind South Africa

UN chief welcomes G20 commitment to fight climate change

South Sudan famine threat: UN food security agency in ‘race against time’

Are ECB’s €500 billion enough to revive Eurozone? Will the banks pass it to the real economy?

How to turn a traditional business into a platform-based success

Responsible Artificial Intelligence

Greece’s future solely in the hands of Tsipras; he can direct the poor country any way he likes

The road ahead to building a more sustainable world

“C’est la vie”? French recession and unemployment to linger in Eurozone

3 ways blockchain can accelerate sustainable development

Statement by the European Commission following the first meeting of the EU-UK Joint Committee

Modern society has reached its limits. Society 5.0 will liberate us

‘Act fast and do whatever it takes’ to fight the COVID-19 crisis, say leading economists

4 ways blockchain will transform the mining and metals industry

Eurozone in trouble after Nicosia’s ‘no’

Why Indian students are going abroad to become Doctors?

As ride-hailing firms drive into the future, who is being left behind?

New Consumer Agenda: European Commission to empower consumers to become the driver of transition

EU consumer rules: Airbnb cooperates with European Commission and EU consumer authorities improving the way it presents offers

More Stings?

Advertising

Speak your Mind Here

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s