WildAnimalFights

Hello Kaspersky Lab researchers,

I know you avoid attribution as a policy, but it seems fairly evident that most state-level targeted attacks seem to be carried out by the so-called major cyber powers (U.S., U.K., Russia, China, Iran, etc.). For the sake of this question, let’s assume attributional indicators reflect reality. Why don’t we see more state-level hacking activity carried out by developing or undeveloped nations? It would seem that the cyber espionage game is completely democratic with the wide availability of cheap and free remote access and post exploitation tools.

Thanks!

Color me unimpressed by Bloomberg's reporting there. Not many named sources, if any.

How can we say these details about going to banya with high-level Kremlin figures are facts? Bloomberg is sourcing that information to "six current and former employees who declined to discuss the matter publicly because they feared reprisals." That's unverifiable.

I mean that report is a hatchet job where a western media outlet accuses an eastern AV company of having nefarious ties with the Kremlin. There are no named sources in that report. Where is Bloomberg's reporting about Crowdstrike and Mandiant's close ties with the U.S. government? Those companies are loaded with former FBI employees.

He did deny them: https://eugene.kaspersky.com/2015/03/20/a-practical-guide-to-making-up-a-sensation/