Hackers From North Korea, Russia Targeted COVID-19 Vaccine Makers, According To Microsoft

(Photo by Jeenah Moon/Getty Images)

Font Size:

North Korean and Russian hackers have reportedly targeted the accounts of seven companies involved in researching COVID-19 drugs and vaccines.

Microsoft said in some cases, the hackers have been successful, according to The Wall Street Journal (WSJ). While Microsoft would not name the companies, they said that the seven companies being targeted operate in the U.S., Canada, France, India and South Korea.

“Among the targets, the majority are vaccine makers that have COVID-19 vaccines in various stages of clinical trials,” Microsoft said in a blog post Friday.

The Russian hacking group allegedly behind the attacks is Strontium or Advanced Persistent Threat (APT) 28, according to the report. APT 28 has been linked to numerous cyberattacks on U.S. and European targets in the past, including hacking into the Democratic National Committee’s networks during the 2016 presidential election, according to The Hill.

Russian hacking groups have been accused of trying to steal vaccines before, with Britain’s National Cyber Security Center (NCSC) alleging in July that APT 29 attempted to break into academic and pharmaceutical companies for data on COVID-19 vaccines and treatment.

Cyberattacks could delay clinical trials or research as scientists across the globe rush to develop a vaccine for the virus that has claimed more than 1 million lives. (RELATED: 5 Chinese Nationals, 2 Malaysian Nationals Charged With Hacking, Department Of Justice Announces)

A COVID-19 vaccine is ready to be given to a volunteer at the Research Centers of America (RCA) in Hollywood, Florida, on August 13, 2020. - So-called phase three vaccine clinical trials, in which thousands of people take part in the final stages, are gaining traction in Florida. With more than half a million cases and over 9,000 deaths, Florida ranks second in the US in total cases behind California, making it an ideal place to carry out the trials. That has led to a flurry of activity at the RCA, a private center carrying out clinical trials in Hollywood, 25 miles (40kms) north of Miami. (Photo by CHANDAN KHANNA / AFP) (Photo by CHANDAN KHANNA/AFP via Getty Images)

A COVID-19 vaccine is ready to be given to a volunteer at the Research Centers of America (RCA) in Hollywood, Florida, on August 13, 2020.  (Photo by CHANDAN KHANNA/AFP via Getty Images)

Dapo Akande, a professor of international law at the University of Oxford, told the WSJ that there needs to be stronger protections in international law for cyberattacks on health-care institutions.

“We need to kind of raise the profile and to raise the quality of the discussion around these issues as to what is off-limits,” he said, per the report.

Microsoft agreed, noting in their statement Friday that international law must protect health care facilities.

“Microsoft is calling on the world’s leaders to affirm that international law protects health care facilities and to take action to enforce the law,” the statement reads. “We believe the law should be enforced not just when attacks originate from government agencies but also when they originate from criminal groups that governments enable to operate – or even facilitate – within their borders. This is criminal activity that cannot be tolerated.”

In May the U.S. also accused China of attempting to steal American research into treatment and vaccines for COVID-19.