3 ways activists are being targeted by cyberattacks

cyber threat

(Unsplash, 2019)

This article is brought to you thanks to the collaboration of The European Sting with the World Economic Forum.

Author: Friedhelm Weinberg, Executive Director, HURIDOCS


When activists open their inboxes, they find more than the standard spam messages telling them they’ve finally won the lottery.

Instead, they receive highly sophisticated emails that look like they are real, purport to be from friends and invite them to meetings that are actually happening. The catch is: at one point the emails will attempt to trick them.

Phishing for accounts, not compliments

In 2017, the Citizen Lab at the University of Toronto and the Egyptian Initiative for Personal Rights, documented what they called the “Nile Phish” campaign, a set of emails luring activists into giving access to their most sensitive accounts – email and file-sharing tools in the cloud. The Seoul-based Transitional Justice Working Group recently warned on its Facebook page about a very similar campaign.

As attacks like these have mounted in recent years, civil society activists have come together to defend themselves, support each other and document what is happening. The Rarenet is a global group of individuals and organizations that provides emergency support for activists – but together it also works to educate civil society actors to dodge attacks before damage is done. The Internet Freedom Festival is a gathering dedicated to supporting people at risk online, bringing together more than 1,000 people from across the globe.

 

The emails from campaigns like Nile Phish may be cunning and carefully crafted to target individual activists, but they are socially sophisticated – they are not cutting-edge technology. Protection is stunningly simple: do nothing. Simply don’t click the link and enter information – as hard as it is when you are promised something in return.

Often digital security is about being calm and controlled as much as it is about being savvy in the digital sphere. And that is precisely what makes it difficult for passionate and stressed activists!

The million-dollar virus

Unfortunately, calm is not always enough. Activists have also been targeted with sophisticated spyware that is incredibly expensive to procure and difficult to spot. Ahmed Mansoor, a human-rights defender from the United Arab Emirates, received messages with malware (commonly known as computer viruses) that cost one million dollars on the grey market, where unethical hackers and spyware firms meet.

Shutting down real news with fake readers

Both phishing and malware are attacks directed against the messengers, but there are also attacks against the message itself. This is typically achieved by directing hordes of fake readers to the real news – that is, by sending so many requests through bot visitors to websites that the servers break down under the load. Commonly referred to as “denial of service” attacks, these bot armies have also earned their own response from civil society. Specialised packages from Virtual Road or Deflect sort fake visitors from real ones to make sure the message stays up.

A chart showing how distributed denial of service (DDoS) attacks have grown over time.

How distributed denial of service (DDoS) attacks have grown.
Image: Kinsta.com; data from EasyDNS

Recently, these companies also started investigating who is behind these attacks– a notoriously difficult task, because it is so easy to hide traces online. Interestingly, whenever Virtual Road were so confident in their findings that they publicly named attackers, the attacks stopped. Immediately.

Online, as offline, one of the most effective ways to ensure that attacks end is to name the offenders, whether they are cocky kids or governments seeking to stiffle dissent.

But more important than shaming attackers is supporting civil society’s resilience and capacity to weather the storms. For this, digital leadership, trusted networks and creative collaborations between technologists and governments will pave the way to an internet where the vulnerable are protected and spaces for activism are thriving.

the sting Milestone

Featured Stings

Can we feed everyone without unleashing disaster? Read on

These campaigners want to give a quarter of the UK back to nature

How to build a more resilient and inclusive global system

Stopping antimicrobial resistance would cost just USD 2 per person a year

The World Health Organization has called on countries to ‘test, test, test’ for coronavirus – this is why

UN Mission in Haiti calls on protestors, authorities, to refrain from violence

FROM THE FIELD: ‘Blue’ finance flows in the Seychelles

Inflation not a problem for Europe

Human Rights Council election: 5 things you need to know about it

Youth Forum welcomes European Commission proposal to speed up financing for youth employment

First aid in six months reaches families in western Yemen, ‘timelines’ slip over Hudaydah ceasefire talks

Prospect of lasting peace ‘fading by the day’ in Gaza and West Bank, senior UN envoy warns

UN health agency team in China to strengthen coronavirus response through partnership

Civil protection: Parliament strengthens EU disaster response capability

Victims’ Rights: New Strategy to empower victims

The hidden pandemic: mental illness

From inconvenience to opportunity: the importance of international medical exchanges

How LA plans to be 1.6°C cooler by 2050

Terrorist content online: companies to be given just one hour to remove it

Can medical students be prepared for Global Health ethical issues?

Environment and health at increasing risk from growing weight of ‘e-waste’

‘No safe way’ into battle-scarred Afghan city of Ghazni to deliver aid as traumatized children search for parents

Africa Forum aims to boost business, reduce costs, help countries trade out of poverty

FROM THE FIELD: Argentina Preserving Pristine Forests

Single-use plastics: New EU rules to reduce marine litter

UN rights chief urges ‘immediate dialogue’ to end Chile unrest

Inspiring medical students to choose primary health care

Here are four steps SMEs can take for long-term success

What’s behind South Korea’s elderly crime wave?

Will the three major parties retain control of the new EU Parliament?

3 ways to nurture collaboration between universities and industry

Systems leadership can change the world – but what exactly is it?

‘Real change’ involving women in peace and security, still too slow, Guterres tells Security Council

How to build a better world for heart health after COVID-19

This Japanese politician is making history – by taking paternity leave

Rohingya refugee shelters ‘washed away’ in Bangladesh monsoon rains: UN agency

How ‘savings circles’ empower women in rural Africa

DRC ‘calm but tense’ as country awaits presidential election result

5 challenges for government adoption of AI

Should Europe be afraid of the developing world?

State of the Union 2017: Juncker’s optimism about EU growth and Brexit’s impact

Eurozone’s central bank leadership prepares for shoddier prospects

In wake of ‘collapsed’ agreement, new wave of violence threatens millions in Syria’s Idlib

COVID-19 and nature are linked. So should be the recovery.

Eurozone: Austerity brings new political tremors

Australia’s bushfires have pumped out half a year’s CO2 emissions

Cultural tolerance is a must: “No sir, I’m not inferior!”

It takes far too long for a rare disease to be diagnosed. Here’s how that can change

5 ways governments can unleash the power of young entrepreneurs

A Sting Exclusive: “Regional Policy: a fully-fledged investment policy”, Commissioner Cretu reveals live from European Business Summit 2015

On our way to China

COVID-19: MEPs urge quick action to prevent “huge recession”

Telemedicine can be a COVID-19 game-changer. Here’s how

More progress needed on reducing and redesigning agricultural support policies

Action needed to tackle stalled social mobility

“None of our member states has the dimension to compete with China and the US, not even Germany!”, Head of EUREKA Pedro Nunes on another Sting Exclusive

On Youth Participation: Are we active citizens?

Mankind’s first tool to fight malaria also kills

Terrorist content online: MEPs agree to start negotiations with EU countries

ACP-EU : Agreement on climate change, migration and post-Cotonou

‘More time’ agreed for buffer zone, to spare three million Syrian civilians in Idlib

‘Dire consequences’ for a million children in the Middle East, North Africa, as funding dwindles

Bankruptcy or referendum: which one is going to be first?

CHINA: five letters that could mean…

More Stings?

Advertising

Speak your Mind Here

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s