Results 1 to 6 of 6

Thread: Russian State-Sponsored Cyber Actors Targeting Network Infrastructure Devices

  1. #1

    Russian State-Sponsored Cyber Actors Targeting Network Infrastructure Devices

    https://www.us-cert.gov/ncas/alerts/TA18-106A
    Alert (TA18-106A)

    Original release date: April 16, 2018

    Systems Affected

    • Generic Routing Encapsulation (GRE) Enabled Devices
    • Cisco Smart Install (SMI) Enabled Devices
    • Simple Network Management Protocol (SNMP) Enabled Network Devices


    Overview

    This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS), the Federal Bureau of Investigation (FBI), and the United Kingdom’s National Cyber Security Centre (NCSC). This TA provides information on the worldwide cyber exploitation of network infrastructure devices (e.g., router, switch, firewall, Network-based Intrusion Detection System (NIDS) devices) by Russian state-sponsored cyber actors. Targets are primarily government and private-sector organizations, critical infrastructure providers, and the Internet service providers (ISPs) supporting these sectors. This report contains technical details on the tactics, techniques, and procedures (TTPs) used by Russian state-sponsored cyber actors to compromise victims. Victims were identified through a coordinated series of actions between U.S. and international partners. This report builds on previous DHS reporting and advisories from the United Kingdom, Australia, and the European Union. [1-5] This report contains indicators of compromise (IOCs) and contextual information regarding observed behaviors on the networks of compromised victims. FBI has high confidence that Russian state-sponsored cyber actors are using compromised routers to conduct man-in-the-middle attacks to support espionage, extract intellectual property, maintain persistent access to victim networks, and potentially lay a foundation for future offensive operations.

    DHS, FBI, and NCSC urge readers to act on past alerts and advisories issued by the U.S. and U.K. Governments, allied governments, network device manufacturers, and private-sector security organizations. Elements from these alerts and advisories have been selected and disseminated in a wide variety of security news outlets and social media platforms. The current state of U.S. network devices—coupled with a Russian government campaign to exploit these devices—threatens the safety, security, and economic well-being of the United States.

    The purpose of this TA is to inform network device vendors, ISPs, public-sector organizations, private-sector corporations, and small office home office (SOHO) customers about the Russian government campaign, provide information to identify malicious activity, and reduce exposure to this activity.

    Description

    Since 2015, the U.S. Government received information from multiple sources—including private and public sector cybersecurity research organizations and allies—that cyber actors are exploiting large numbers of enterprise-class and SOHO/residential routers and switches worldwide. The U.S. Government assesses that cyber actors supported by the Russian government carried out this worldwide campaign. These operations enable espionage and intellectual property that supports the Russian Federation’s national security and economic goals.

    ...



  2. Remove this section of ads by registering.
  3. #2
    Propaganda.
    Twitter: B4Liberty@USAB4L
    "Foreign aid is taking money from the poor people of a rich country, and giving it to the rich people of a poor country." - Ron Paul
    "Beware the Military-Industrial-Financial-Corporate-Internet-Media-Government Complex." - B4L update of General Dwight D. Eisenhower
    "Debt is the drug, Wall St. Banksters are the dealers, and politicians are the addicts." - B4L
    "Totally free immigration? I've never taken that position. I believe in national sovereignty." - Ron Paul
    They are what they hate.” - B4L


    The views and opinions expressed here are solely my own, and do not represent this forum or any other entities or persons.

  4. #3
    The ruskies have taken over the world, resistance is futile. So says the US gov.

    A nuke strike may be mandatory under the new guidelines, cyberattack. Duck 'n cover.

    Last edited by RonZeplin; 04-16-2018 at 03:30 PM.
    DACA S**thole Dreamers - Make America Great Again?

  5. #4
    Quote Originally Posted by RonZeplin View Post
    The ruskies have taken over the world, resistance is futile. So says the US gov.

    A nuke strike may be mandatory under the new guidelines, cyberattack. Duck 'n cover.
    At this point, the Baby Boomers may be ready for a bunch of EMPs so we can go back to nice, secure electro-mechanical systems that no one halfway around the world can possibly ever hack.
    Quote Originally Posted by angelatc View Post
    There's not a liberty lover on the planet who isn't called a liberal by the right, and a con by the left.

  6. #5
    Quote Originally Posted by acptulsa View Post
    At this point, the Baby Boomers may be ready for a bunch of EMPs so we can go back to nice, secure electro-mechanical systems that no one halfway around the world can possibly ever hack.
    It's coming. Eventually.

  7. #6
    Quote Originally Posted by acptulsa View Post
    At this point, the Baby Boomers may be ready for a bunch of EMPs so we can go back to nice, secure electro-mechanical systems that no one halfway around the world can possibly ever hack.
    Quote Originally Posted by phill4paul View Post
    It's coming. Eventually.
    Good!



Similar Threads

  1. HR 6393-Bill Targeting Russian Propaganda and Fake News
    By Son_of_Liberty90 in forum U.S. Political News
    Replies: 1
    Last Post: 12-05-2016, 03:05 PM
  2. Mitt Romney Sold U.S Cyber Infrastructure To China – Huawei.
    By gatomalo in forum U.S. Political News
    Replies: 3
    Last Post: 11-01-2012, 06:09 PM
  3. Replies: 0
    Last Post: 08-12-2011, 02:28 AM
  4. Russian Sponsored TV sounds like it's Libertarian
    By bossman068410 in forum U.S. Political News
    Replies: 3
    Last Post: 03-26-2009, 05:36 PM
  5. Replies: 1
    Last Post: 11-17-2008, 07:01 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •