Feds Warn Cybersecurity Community to Be Aware of Russian State-Sponsored Threat Actor Tactics
Microsoft issues 120 security fixes, Iranian group uses Log4Shell to drop backdoor, Serious flaw found in KCodes NetUSB component, SysJoker malware evades detection, Russian crim spills clues, more
In what is widely regarded as strategic messaging rather than an effort to convey new information, the Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and the NSA issued a joint alert disclosing commonly observed tactics, techniques, and procedures (TTPs) used by Russian state-sponsored threat actors.
The advisory warned against “common but effective tactics” used to gain initial access to victim networks, including spear phishing, brute force attacks, and exploiting known vulnerabilities. The alert encourages the cybersecurity community, especially critical infrastructure network defenders, to adopt a heightened state of awareness and to conduct proactive threat hunting. (Adam Janofsky / The Record)
Related: Bleeping Computer, Cyberscoop, US-CERT Current Activity, InsideCyberSecurity.com, The Hacker News, ZDNet, Law360, Dark Reading, IT PRO, Industrial Cyber
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.