US, UK Detail Networking Protocols Abused by Russian Cyberspies

LASER_oneXM

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
Content source
https://www.securityweek.com/us-uk-detail-networking-protocols-abused-russian-cyberspies
A joint technical alert issued on Monday by the United States and the United Kingdom details how cyberspies believed to be working for the Russian government have abused various networking protocols to breach organizations.

According to the Department of Homeland Security (DHS), the Federal Bureau of Investigation (FBI), and the United Kingdom’s National Cyber Security Centre (NCSC), the hackers targeted routers, switches, firewalls, and network-based intrusion detection systems (NIDS). Their main targets have been government and private-sector organizations, critical infrastructure operators, and their Internet service providers (ISPs).

“FBI has high confidence that Russian state-sponsored cyber actors are using compromised routers to conduct man-in-the-middle attacks to support espionage, extract intellectual property, maintain persistent access to victim networks, and potentially lay a foundation for future offensive operations,” the report reads.

The first technical report from the DHS and FBI accusing Russia of cyberattacks was the GRIZZLY STEPPE report published in December 2016. Another technical report blaming Russia for cyber operations was published in March, when the U.S. accused Moscow of campaigns targeting the energy and other critical infrastructure sectors. The alert on critical infrastructure attacks was first released in October 2017, but the attacks had not been openly attributed to Russia at the time.
Click to expand...
 
  • Like
Reactions: upnorth, ZeroDay and harlan4096
F

ForgottenSeer 58943

This is FUD by the way, another slow dribble of useless information to feed into the Anti-Russian hysteria.

There is literally NOTHING new in all of this that wasn't already known long ago and also wasn't exploited by every national state on the planet with at least 1 'guy' doing some hacking... :ROFLMAO:

Everyone since what.. 5 years+ ago started using GRE encapsulated inside of IPSEC VPN's for security, right?

Who is putting this nonsense out and why?
 
  • Like
Reactions: upnorth and MeltdownEnemy
SumTingWong

SumTingWong

Level 28
Verified
Top Poster
Well-known
Apr 2, 2018
1,714
ForgottenSeer 58943 said:
This is FUD by the way, another slow dribble of useless information to feed into the Anti-Russian hysteria.

There is literally NOTHING new in all of this that wasn't already known long ago and also wasn't exploited by every national state on the planet with at least 1 'guy' doing some hacking... :ROFLMAO:

Everyone since what.. 5 years+ ago started using GRE encapsulated inside of IPSEC VPN's for security, right?

Who is putting this nonsense out and why?
Click to expand...

Probably Trump's employee. Every time Trump tweet something, I feel like we are getting close to WW3.
 
  • Like
Reactions: upnorth
You must log in or register to reply here.

Similar threads

[correlate]
    • +Reputation
    • Applause
    • Hundred Points
U.S. Agencies and Allies Partner to Identify Russian Snake Malware Infrastructure Worldwide
Replies
1
Views
1,208
News Archive
LASER_oneXM
LASER_oneXM
nicolaasjan
    • Like
    • Applause
Security News US Sanctions Affiliates of Russia-Based LockBit Ransomware Group
Replies
0
Views
1,383
Security News
nicolaasjan
nicolaasjan
[correlate]
    • +Reputation
    • Like
Gamaredon hackers start stealing data 30 minutes after a breach
Replies
0
Views
765
News Archive
[correlate]
[correlate]

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top