US Issues Alert Over Russian Hackers

US Issues Alert Over Russian Hackers

The FBI, CISA, and the NSA have warned those in charge of the United States' critical infrastructure network to prepare themselves against cyber-attacks originating in Russia.

In a joint advisory issued January 11, the three agencies provided an overview of Russian state-sponsored cyber-operations; commonly observed tactics, techniques, and procedures (TTPs); detection actions; incident response guidance; and mitigations. 

The agencies shared attack vectors that have been favored by Russian-based cyber-criminals in the past and urged the cybersecurity community to "adopt a heightened state of awareness and to conduct proactive threat hunting."

Tactics cited in the advisory include spear phishing, brute force, exploiting known vulnerabilities, compromising third-party software, and developing and deploying custom malware.

"Russian state-sponsored APT actors have used sophisticated cyber-capabilities to target a variety of US and international critical infrastructure organizations, including those in the Defense Industrial Base as well as the Healthcare and Public Health, Energy, Telecommunications, and Government Facilities Sectors," the joint advisory reads.

The warning came as no surprise to Vectra CTO and technical director Tim Wade. 

He told Infosecurity Magazine: "I can’t recall a time in my life when Russia wasn’t aggressively probing Western resolve, ranging from tactical incursions into air space to pulling strategic economic

Read More: