banner

Russian Botnet for Disinformation Campaigns

Written by

FRONTON IS DESIGNED TO RUNS ON SOCIAL MEDIA

A Russian Iot botnet, Fronton, has earned considerable infamy by its ability to launch disinformation campaigns on social media.

Botnet is short for robot network, and the term refers to an IoT network of interconnected computers which are infected with malware. Usually, one attacker or a team of attackers control the network and launch Distributed Denial of Service attacks. Sometimes, the hackers choose to steal data, send spam and access the device and its connection.

Botnets usually target IoT devices to initiate their campaign because such devices have become ubiquitous and they are poorly protected. What’s more they are always in the ‘ON’ mode which offers attackers the opportunity to gain access 24/7. That’s why IoT devices have served as launchpads for some of the most devastating DDoS attacks.

Back in 2020, BBC Russia and ZDNet were the first to break the news about Fronton, the IoT botnet. Their source of information was the documents published by a Russian hacktivist group, Digital Revolution. The group had earlier claimed that they had hacked a subcontractor of Federal Security Service of the Russian Federation. Further investigation led the researchers to a Moscow based company, Zeroday Technologies. Working behind the scene was a hacker Pavel Sitnikov, who was arrested in March 2021. Charges were framed against him that he had distributed malicious software through his Telegram channel.

 One security firm based in Virginia, USA, tried to learn more and found that Fronton also contains a web-based dashboard called SANA. Nisos, the security firm investigating about Fronton’s operational features further explained:

“SANA creates social media persona accounts, including provisioning of an email and phone number. In addition, the system provides facilities for creating these newsbreaks on a schedule or a reactive basis.”

This ability to create fake social media accounts from around the world, mimicking real life scenario, and use them in a coordinated manner is something difficult for any social media platform to detect.

When Fronton first came to light in 2020, it was assumed that the botnet was a fairly ordinary malware capable of launching DDoS attacks. But later investigations and in-depth analysis led researchers to realign their initial assumptions. Now, they believe that Fronton packs a lot of firepower behind its benign-looking facade.

Fronton is now known to have drummed up disinformation campaigns to create discension about immigration and covid19 issues. Reports also abound that support the perception that Fronton can even influence elections and democratic processes by moulding opinions in its favour.

Its role was highlighted in the events following Russia-Ukraine war. The neighbouring countries like Sweden and Finland now fear that Russia might try to invade their land just as it has done in Ukraine. Sensing that danger, both the countries of aligned themselves with NATO forces although historically, they have remained politically neutral for as long as one can remember.

Cyber security experts have now come to the conclusion that it is important to be ever vigilant when it comes to botnets like Fronton which can instigate upheavals in an otherwise peaceful and calm society.

Article Categories:
News Archive

Leave a Reply

Your email address will not be published. Required fields are marked *

Go Back