Google Translate version of Italian Report.
Don’t see any mention of elections in that.
Hacker employed by Leonardo spa stealing military secrets
7 December 2020
Military secrets stolen from Leonardo spa, the most important arms manufacturer in Italy and among the most important in the world. This is not a hacker attack made by unknown “hackers”, the people involved are figures who acted protected by the anonymity of the network. The hacker was discovered thanks to complex investigations by the Naples Public Prosecutor’s Cybercrime Working Group, culminating today in the execution of two custody orders.
The recipients are the former IT security manager of Leonardo S.p.A., Arturo D’Elia, for whom the investigating judge has ordered the prison and Antonio Rossi, head of the C.E.R.T. (Cyber Emergency Readiness Team) of Leonardo s.p.a., a body responsible for managing the cyber attacks suffered by the company to which the precautionary measure of home custody was notified.
Arturo D’Elia was arrested today 7 December 2020 as part of an investigation by the cybercrime pool of the Naples Public Prosecutor’s Office (prosecutor Onorati, Cozza, deputy prosecutor Piscitelli) for which today the investigating judge ordered the prison. The hacker is accused of having stolen an enormous amount of data (about 10 gigabytes of data) and classified information of significant business and military value in the aerospace and aircraft division of Leonardo Spa and of having cleverly hidden the gravity of the facts.
D’Elia had managed to introduce USB pen drives with a newly engineered Trojan on 94 workstations, 33 of which in the company plant in Pomigliano d’Arco. The scam system was designed so that after downloading stolen data, all traces of the raid were erased.
The user profiles of many employees were configured on the Leonardo workstations targeted by the hacker, some with managerial duties, engaged in business activities aimed at producing goods and services of a strategic nature for the security and defense of the country, such as example, designs for electronic systems of military aircraft.
The investigation began with an episode in January 2017, when the cybersecurity structure of Leonardo Spa reported anomalous network traffic leaving the workstations of the Pomigliano d’Arco plant generated by software unknown to antivirus systems Corporate: cftmon.exe. The traffic was directed to the web page www.fuijamaaltervista.org for which the preventive seizure was ordered today.
Arturo D’Elia had even managed to successfully carry out a cyber attack on an American NATO base located on Italian territory, an action for which he was so proud that he noted it on his curriculum, without however specifying that precisely for that cybercrime had been convicted.
Nevertheless, he worked for Leonardo Spa’s IT security. According to the investigators of the C.n.a.i.p.i.c. of the Central Service of the Postal and Communications Police and of the Campania Compartment of the same service, the attack carried out by the hacker, although facilitated by the fact that it was carried out from within, can still be classified as a cyberwar threat or, however, an action of high espionage. ABov
Disregard Post 11, see post 10.
I know. I mention that above. It was my mistake. Sorry.