Disinformation undermines true journalism and steers the public opinion in highly charged topics such as immigration, climate change, armed conflicts or refugee and health crises. Social media platforms are the battlefield of disinformation.
The war in Ukraine is no exception. This investigation presents how a large disinformation campaign targeting European audience with pro-Russian propaganda was active in social media for months. What started as an investigation of media clones of the German Der Spiegel, Bild and T-Online turned out to be a fascinating dive into the multimedia world of disinformation production.
Tracing the infrastructure of a few websites helped us to discover dozens of websites spreading Russian propaganda related to the war in Ukraine. The campaign undermined the Ukrainian government, its citizens, and Western governments supporting Ukraine and supported the lift of sanctions against Russia.
Qurium’s infrastructure research does not only show how European infrastructure has been used to host the fake news sites, but also how new domains have been registered to keep the campaign running in the very same physical servers.
Qurium’s investigation is the result of a collaboration with EU DisinfoLab, an independent non-profit organization focused on tackling sophisticated disinformation campaigns targeting the EU. Qurium has focused on the technical aspects of the campaign.
Qurium forensics report:
Under the hood of a Doppelgänger
EU DisinfoLab report:
Doppelganger
Follow me on Twitter: @securityaffairs and Facebook
[adrotate banner=”9″] | [adrotate banner=”12″] |
(SecurityAffairs – hacking, Disinformation)
[adrotate banner=”5″]
[adrotate banner=”13″]
Threat actors are exploiting the CVE-2023-22518 flaw in Atlassian servers to deploy a Linux variant of…
Ivanti addressed two critical vulnerabilities in its Avalanche mobile device management (MDM) solution, that can…
Researchers released an exploit code for the actively exploited vulnerability CVE-2024-3400 in Palo Alto Networks'…
Cisco Talos warns of large-scale brute-force attacks against a variety of targets, including VPN services,…
The PuTTY Secure Shell (SSH) and Telnet client are impacted by a critical vulnerability that could…
Researchers warn of a renewed cyber espionage campaign targeting users in South Asia with the…
This website uses cookies.