Friday, September 5, 2025
Nordic Monitor
No Result
View All Result
  • Home
  • Extremism
  • Military
  • Terrorism and Crime
  • Intelligence
  • Foreign Policy
  • Contact Us
    • Give us a tip!
  • About Us
  • Home
  • Extremism
  • Military
  • Terrorism and Crime
  • Intelligence
  • Foreign Policy
  • Contact Us
    • Give us a tip!
  • About Us
No Result
View All Result
Nordic Monitor
No Result
View All Result
  • Home
  • Extremism
  • Military
  • Terrorism and Crime
  • Intelligence
  • Foreign Policy
  • Contact Us
  • About Us

NATO detected Russian hackers’ successful cyber operation on Turkey’s energy giant BOTAŞ

December 16, 2019
A A
NATO detected Russian hackers’ successful cyber operation on Turkey’s energy giant BOTAŞ

Turkey purchases gas from Russia via the Blue Stream and TurkStream pipelines across the Black Sea.

Share on FacebookShare on Twitter

Nordic Monitor 

 

The NATO Computer Incident Response Capability (NCIRC) informed Turkish authorities of a cyber espionage attack, codenamed SNAKE, on Turkey’s state-owned energy giant the Petroleum Pipeline Corporation (BOTAŞ) by a Russian hacker group, a classified memo has confirmed.

SNAKE is a Russian cyber espionage campaign using complex techniques for evading host defenses and providing the attackers with covert communication channels.

The memo, issued by the Communications, Electronics and Information Systems (MEBS) department of the Turkish General Staff, revealed that NCIRC shared a report on the cyber activities of the Russian hackers by e-mail on June 16, 2016. The NATO report, which was sent to the Cyber Incidents Response Teams (Siber Olaylara Müdahale Ekipleri, or SOME) of the Turkish military, was prepared by British cyber specialist BAE Systems Applied Intelligence, the document underlined.

According to the memo, the report disclosed the Russian cyber attack, SNAKE, on BOTAŞ and claimed that the hacker group successfully infiltrated BOTAŞ’s network and deployed malicious software to ensure that they retain a long-term foothold for the purpose of intelligence collection. But it was not yet clear if any data had been stolen.

 

 

The memo also revealed that complex techniques, infrastructure and components of the overall SNAKE cyber campaign were analyzed in the report.

According to the memo the NATO report on Russian cyber espionage activities claimed that the Russian hacker group targeted ministries, embassies and commercial entities to collect intelligence and that the hackers had focused on the South Caucasian states and energy agencies of Azerbaijan and Georgia during the previous 12 months [June 2015-June 2016].

The report was also circulated to the National Cyber Incidents Response Center (Ulusal Siber Olaylara Müdahale Merkezinin, or USOM), the memo noted.

 

The brief MEBS note titled “Infiltration into BOTAŞ A.Ş.”:

 

 

SNAKE was disclosed for the first time by BAE Systems in 2014. Since then, the Western intelligence community has been examining how the attackers behind SNAKE penetrated highly secured systems.

The attack on BOTAŞ’s network might have been part of a worldwide campaign. In at least one case, German authorities detected an attack on the government computer network in 2017, after which the chief federal prosecutor’s office launched a preliminary investigation into possible espionage related to the incident. However, the BOTAŞ case was not investigated by Turkish prosecutors.

BOTAŞ is responsible for crude oil and natural gas pipelines in Turkey. In addition to its partnerships with Russia’s Gazprom, it operates the Trans-Anatolian Natural Gas Pipeline Project (TANAP) with Azerbaijan’s SOCAR to reduce gas imports from Russia.

On one hand, BOTAŞ has signed contracts with Gazprom to construct a gas pipeline running under the Black Sea to Turkey. On the other, it continues working together with SOCAR for a gas supply from Azerbaijan to the European and Turkish energy markets. The geographical energy rivalry and projects aiming at diversifying energy sources might have attracted the attention of the Russian hacker group.

 

 

 

 

 

ShareTweet
Previous Post

Ankara, NATO members have argued over status of YPG since 2015

Next Post

Turkish criminal justice system is failing in cracking down on ISIS

Nordic Monitor

Nordic Monitor

[email protected]

Next Post
Secret military intel shows most foreign jihadists let go in Turkey after detention

Turkish criminal justice system is failing in cracking down on ISIS

76 percent of Turkish army officers now graduates of Erdogan’s military schools

76 percent of Turkish army officers now graduates of Erdogan’s military schools

September 5, 2025
Spanish Supreme Court exposes Turkey’s role in channeling jihadists to Syria

Spanish Supreme Court exposes Turkey’s role in channeling jihadists to Syria

September 4, 2025
Spain flags Ankara’s growing role in sanctions evasion for Russia

Spain flags Ankara’s growing role in sanctions evasion for Russia

September 3, 2025
Turkish government urged to give intelligence training to state-funded students abroad

Turkish government urged to give intelligence training to state-funded students abroad

September 2, 2025
UN identifies Turkish weapons in South Sudan conflict despite arms embargo

UN identifies Turkish weapons in South Sudan conflict despite arms embargo

September 1, 2025
Pro-Erdoğan think tank recommends abandoning additional S-400 purchase to avoid further strengthening Greece’s hand

US denies talk of agreement on Turkey’s S-400 purchase

August 29, 2025
Secret military intel shows most foreign jihadists let go in Turkey after detention

Turks among top groups stripped of French citizenship over jihadist terror links

August 28, 2025
Turkey to compensate Iraq for stolen Kurdish oil in a scheme that enriched Erdogan’s family

Erdogan’s family is accused of using shell companies to hide oil transit revenues from Iraq

August 27, 2025
Turkey gifts warship to Maldives while selling the country armed drones produced by Erdogan’s son-in-law

Turkey gifts warship to Maldives while selling the country armed drones produced by Erdogan’s son-in-law

August 26, 2025
Turkey continues to convert historic sites to mosques as part of Islamization campaign

Turkey continues to convert historic sites to mosques as part of Islamization campaign

August 25, 2025

Nordic Monitor

Nordic Monitor is a news web site and tracking site that is run by the Stockholm-based Nordic Research and Monitoring Network. It covers religious, ideological and ethnic extremist movements and radical groups, with a special focus on Turkey.

Tags

al-Qaeda Andrei Karlov China Cyprus Diyanet Egypt Erdogan espionage Germany Greece Gülen Movement Hakan Fidan Hamas Hulusi Akar Ibrahim Kalın IHH Iran IRGC Quds Force ISIL ISIS Isis al-qaida Israel Libya Mevlüt Çavuşoğlu Milli İstihbarat Teşkilatı MIT Muslim Brotherhood NATO President Recep Tayyip Erdoğan Profiling Qatar Recep Tayyip Erdoğan Russia SADAT spying Spying Activities Suleyman Soylu Sweden Syria Torture Turkey Turkish Intelligence Agency Turkish intelligence agency MIT Ukraine United States

Recent News

76 percent of Turkish army officers now graduates of Erdogan’s military schools

76 percent of Turkish army officers now graduates of Erdogan’s military schools

September 5, 2025
Spanish Supreme Court exposes Turkey’s role in channeling jihadists to Syria

Spanish Supreme Court exposes Turkey’s role in channeling jihadists to Syria

September 4, 2025
Spain flags Ankara’s growing role in sanctions evasion for Russia

Spain flags Ankara’s growing role in sanctions evasion for Russia

September 3, 2025

Copyright © Nordic Research and Monitoring Network All rights reserved.

No Result
View All Result
  • Home
  • Extremism
  • Military
  • Terrorism and Crime
  • Intelligence
  • Foreign Policy
  • Contact Us
    • Give us a tip!
  • About Us

Copyright © Nordic Research and Monitoring Network All rights reserved.