Skip to main content

PC microphones helped steal hundreds of gigabytes of data from Ukraine firms

operation bugdrop used pc microphones to steal data in ukraine hackers
Image used with permission by copyright holder
Allegations of state-sponsored cyberattacks have been in the news lately, including alleged Russian hacks during the recent U.S. elections. These allegations are sometimes based on the code used to break into systems, and sometimes due to the sheer scale and sophistication of attacks that could only be brought by government agencies.

One such large-scale cyberattack, dubbed “Operation BugDrop,” seems to have been perpetrated against targets in Ukraine, as reported on its blog by security firm CyberX. The attack went after at least 70 victim organizations and stole huge amounts of sensitive information using a number of methods including one attack vector — the PC microphone — that is very difficult to guard against.

According to CyberX, Operation BugDrop, so named because the microphones of target PCs were “bugged,” used compromised Microsoft Word documents to install malware capable of eavesdropping and capturing hundreds of gigabytes of data. The firm described Operation BugDrop a “well-organized operation that employs sophisticated malware and appears to be backed by an organization with substantial resources.”

CyberX
CyberX

Chief among those resources appear to be a very large and sophisticated infrastructure enabling the attackers to decrypt and analyze massive amounts of data — up to several gigabytes each day — and then store it in a massive cache of data. As CyberX points out, it’s not just a machine-driven attack because the stolen data requires many human analysts to comb through and make sense of it. While state involvement isn’t guaranteed, it is likely.

CyberX
CyberX

Most of the targets were organizations located in Ukraine, including companies involved in engineering and designing oil and gas distribution facilities, human rights organizations, newspaper editors, and more. A smaller number of organizations in Russia, Austria, and Saudi Arabia were also targeted. Stolen data appears to include audio recordings, screenshots, documents, and passwords.

Operation BugDrop serves to highlight the growing importance of well-organized and heavily financed cybercrime operations aimed at private and governmental organizations and capable of accumulating and analyzing massive amounts of proprietary information. CyberX concludes, not surprisingly, that organizations need to be diligent in monitoring their networks and applying more modern technologies to identify and respond to these increasingly sophisticated attacks.

Mark Coppock
Mark has been a geek since MS-DOS gave way to Windows and the PalmPilot was a thing. He’s translated his love for…
Nvidia is reportedly sunsetting the RTX 4090
The RTX 4090 sitting alongside the Fractal Terra case.

The RTX 4090 is undoubtedly the best graphics card you can buy right now from a performance standpoint, but Nvidia is reportedly discontinuing the flagship GPU. Reports from the Board Channel forums (shared by Wccftech) suggest Nvidia is preparing to end production of the RTX 4090 and the China-exclusive RTX 4090D starting next month in order to make way for next-gen RTX 50-series graphics cards.

It's not surprising that Nvidia would wind down production of the RTX 4090 as the next generation of graphics cards approaches. Flagship GPUs like the RTX 4090 don't have much of a shelf life after a new generation has released, which is something we saw in action with the RTX 3090. Although Nvidia could end production of the GPU in October (the company itself hasn't, and likely won't, confirm that detail publicly), the card won't immediately disappear from store shelves.

Read more
Awesome deal: This Lenovo IdeaPad is $320 off today at Best Buy
The Lenovo IdeaPad 1 laptop with the Windows 11 interface on the display.

Everyone wants to end up with an affordable but dependable device when looking for laptop deals, but that's easier said than done. If you need help with your search, here's an offer to consider -- the Lenovo IdeaPad 1 for only $480 from Best Buy, following a $320 discount on its original price of $800. There's no telling how much time is remaining before this bargain ends though, so if you think this laptop will meet your needs and it fits your budget, you're going to have to complete your purchase immediately to be able to get it for cheaper than usual.

Why you should buy the Lenovo IdeaPad 1 laptop
We tagged Lenovo as one of the best laptop brands as it's long been associated with reliability, and its IdeaPad line of budget and midrange laptops are built to fit the needs of most people, according to our explainer on the different Lenovo brands. With the Lenovo IdeaPad 1, you'll be enjoying these benefits for a relatively affordable price. With the AMD Ryzen 7 5700U processor, AMD Radeon Graphics, and 16GB of RAM, it's not going to challenge the performance of the most powerful models of the best laptops, but it's going to be more than enough for daily activities such as doing online research, building presentations, catching up on social media, and watching streaming shows.

Read more
How to add page numbers in Microsoft Word
Microsoft Word purchase page on a MacBook.

Adding page numbers to Word documents is a great way to better organize them as they grow longer ,and especially if you print it all out. What if you dropped all that paperwork and it went out of order?! Page numbers to the rescue.

Here's how to add page numbers to Word in a few different ways.

Read more