3 ways activists are being targeted by cyberattacks

cyber threat

(Unsplash, 2019)

This article is brought to you thanks to the collaboration of The European Sting with the World Economic Forum.

Author: Friedhelm Weinberg, Executive Director, HURIDOCS


When activists open their inboxes, they find more than the standard spam messages telling them they’ve finally won the lottery.

Instead, they receive highly sophisticated emails that look like they are real, purport to be from friends and invite them to meetings that are actually happening. The catch is: at one point the emails will attempt to trick them.

Phishing for accounts, not compliments

In 2017, the Citizen Lab at the University of Toronto and the Egyptian Initiative for Personal Rights, documented what they called the “Nile Phish” campaign, a set of emails luring activists into giving access to their most sensitive accounts – email and file-sharing tools in the cloud. The Seoul-based Transitional Justice Working Group recently warned on its Facebook page about a very similar campaign.

As attacks like these have mounted in recent years, civil society activists have come together to defend themselves, support each other and document what is happening. The Rarenet is a global group of individuals and organizations that provides emergency support for activists – but together it also works to educate civil society actors to dodge attacks before damage is done. The Internet Freedom Festival is a gathering dedicated to supporting people at risk online, bringing together more than 1,000 people from across the globe.

 

The emails from campaigns like Nile Phish may be cunning and carefully crafted to target individual activists, but they are socially sophisticated – they are not cutting-edge technology. Protection is stunningly simple: do nothing. Simply don’t click the link and enter information – as hard as it is when you are promised something in return.

Often digital security is about being calm and controlled as much as it is about being savvy in the digital sphere. And that is precisely what makes it difficult for passionate and stressed activists!

The million-dollar virus

Unfortunately, calm is not always enough. Activists have also been targeted with sophisticated spyware that is incredibly expensive to procure and difficult to spot. Ahmed Mansoor, a human-rights defender from the United Arab Emirates, received messages with malware (commonly known as computer viruses) that cost one million dollars on the grey market, where unethical hackers and spyware firms meet.

Shutting down real news with fake readers

Both phishing and malware are attacks directed against the messengers, but there are also attacks against the message itself. This is typically achieved by directing hordes of fake readers to the real news – that is, by sending so many requests through bot visitors to websites that the servers break down under the load. Commonly referred to as “denial of service” attacks, these bot armies have also earned their own response from civil society. Specialised packages from Virtual Road or Deflect sort fake visitors from real ones to make sure the message stays up.

A chart showing how distributed denial of service (DDoS) attacks have grown over time.

How distributed denial of service (DDoS) attacks have grown.
Image: Kinsta.com; data from EasyDNS

Recently, these companies also started investigating who is behind these attacks– a notoriously difficult task, because it is so easy to hide traces online. Interestingly, whenever Virtual Road were so confident in their findings that they publicly named attackers, the attacks stopped. Immediately.

Online, as offline, one of the most effective ways to ensure that attacks end is to name the offenders, whether they are cocky kids or governments seeking to stiffle dissent.

But more important than shaming attackers is supporting civil society’s resilience and capacity to weather the storms. For this, digital leadership, trusted networks and creative collaborations between technologists and governments will pave the way to an internet where the vulnerable are protected and spaces for activism are thriving.

Advertising

Advertising

Advertising

Advertising

Advertising

Advertising

the sting Milestone

Featured Stings

Can we feed everyone without unleashing disaster? Read on

These campaigners want to give a quarter of the UK back to nature

How to build a more resilient and inclusive global system

Stopping antimicrobial resistance would cost just USD 2 per person a year

This start-up is 3D-printing an entire neighbourhood in Mexico

Where does our food come from? Here’s why we need to know

Colombia: Santos thanks the EU for its support to the peace process

UN guidelines unveiled to prevent rising hearing loss among young smartphone listeners

Seaweed straws and loose-leaf tea: 6 ways to reduce plastic waste

Algorithms could give the world its first ‘born digital’ free trade agreement in Africa

EU presses India for a free trade agreement

UN chief urges top digital tech panel to come up with ‘bold, innovative ideas’ for an ‘inclusive’ future

‘Dire consequences’ for a million children in the Middle East, North Africa, as funding dwindles

This brewery is ditching plastic six-pack rings to save marine life

In China things are moving in the right direction

These EU countries have the most government debt

UN food aid to Yemen will fully resume after two-month break, as Houthis ‘guarantee’ delivery

Migration crisis, a human crisis after all

This company is breeding millions of insects in the heart of London

Have we reached peak smartphone?

The reverberation of permanent multiprofessional education in combating antimicrobial resistance: future generation prognostic change

EU elections: The louder the threats and the doomsaying the heavier the weight of the vote

4 key ways countries can finance their SDG ambitions

10 predictions for the global economy in 2019

Brexit casts a shadow over the LSE – Deutsche Börse merger: a tracer of how or if brexit is to be implemented

Better ID card security to curb document fraud

Amid Venezuela exodus, UN refugee envoy Angelina Jolie visits camps on Colombian border, appeals for humanity, more support

The challenge of maintaining interest in Primary Health Care in medical students

‘Ground Zero’: Report from the former Semipalatinsk Test Site in Kazakhstan

Conflicting statistics and bad banks haunt the Eurozone

May led Britain to chaos, now looks for way out with unpredictable DUP

Yemen parties underscore ‘strong desire’ for peace, UN Envoy reports

Amidst high trade tensions and policy uncertainty, UN cuts economic growth forecast

Human rights ‘core to sustainable development’: deputy UN chief

90% of fish stocks are used up – fisheries subsidies must stop

Easing funding woes for UN agency assisting Palestine refugees a ‘wise investment for today and the future’

Afghanistan: top UN official denounces ‘extreme’ suffering of civilians in Ghazni

One in three fish caught never gets eaten

How Big Food is responding to the alternative protein boom

‘Good enough’ global cooperation is key to our survival

Autonomous vehicles could clog city centres: a lesson from Boston

Does the EU want GMOs and meat with hormones from the US?

This is how Middle Eastern retailers can keep up with e-commerce

Adolescent health has been overlooked for too long

FROM THE FIELD: Turning waste into a business in the slums of Yaoundé, Cameroon

Eurostat overturns Commission’s assessment of the economy

Meet the Seed Warrior: the man on a mission to rescue India’s rice diversity

Better housing means better health and well-being, stress new WHO guidelines

Euro celebrates its 20th birthday

10 start-ups that are helping to change the Arab world

Why your next car is a bike

Happy workers are more productive, research shows

“Joining forces to #BeatPollution”, a Sting Exclusive by the Head of UNEP in Brussels

EU is now giving Google new monopolies to the detriment of European citizens and Internet companies

The Czech economy is thriving but boosting skills and productivity and transitioning to a low-carbon productive model is vital to sustainable and inclusive growth

UN should be ‘exemplary’ in defending judicial independence, top Judge tells Security Council

IPCC reports devastating climate consequences; US in denial while EU does not fully support the 2050 net zero emissions target

Security: better access to data for border control and migration management

Is the English language too powerful?

AI can wreak havoc if left unchecked by humans

Art, mental health and suicide: different strategies for increasing access to health services

TTIP wins Merkel’s endorsement ahead of 2016 tough deadline

The health of the human being in coexistence with a transformative biosphere

Is Eurozone heading towards a long stagnation?

More Stings?

Speak your Mind Here

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s