Feds warn of broad Russia-linked CVE exploits targeting critical infrastructure
- Federal authorities in the U.S. and nine other countries warn that threat groups affiliated with Russia’s military intelligence service are targeting global critical infrastructure and key resource sectors, according to a joint cybersecurity advisory released Thursday.
- Threat groups affiliated with a specialist unit of the Russian General Staff Main Intelligence Directorate have targeted government services, financial services, transportation systems, energy, and healthcare sectors of NATO members and countries in Europe, Central America and Asia, officials said in the advisory.
- “To date, the FBI has observed more than 14,000 instances of domain scanning across at least 26 NATO members and several additional EU countries,” authorities said in the advisory. The attackers have defaced victim websites, scanned infrastructure, and exfiltrated and leaked stolen data.
Dive Insight:
The threat group is primarily attempting to disrupt international aid to Ukraine, part of a broader yearslong effort that accelerated after Russia invaded Ukraine in February 2022.
U.S. cyber authorities have been warning about more sophisticated and dangerous activities tied to Russia. Other Russia-linked hackers attacked Microsoft’s internal systems starting in late November and stole credentials for federal agencies that could be used to compromise government departments, authorities said earlier this year.
To read the complete article, visit Cybersecurity Dive.
Tags: Alerting Systems Analytics Applications Companies Critical Infrastructure Cybersecurity DHS Enterprise Federal Government/Military Incident Command/Situational Awareness Internet of Things Internet of Things Interoperability IoT/Smart X News Policy Public Safety Security Software State & Local Government System Design System Installation System Operation Tracking, Monitoring & Control Training Partner content