The National Cyber Security Centre has added its support to new advice from international partners on countering Russian state-sponsored cyber threats targeting critical infrastructure.
The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and National Security Agency (NSA) have published a joint advisory encouraging network defenders of critical infrastructure to remain vigilant against Russian-backed hacking groups.
The advisory provides an overview of Russian state-sponsored cyber operations, including commonly observed tactics, techniques, and procedures (TTPs), detection actions, incident response guidance, and mitigations. Russia is widely believed to be behind cyber attacks on government websites in Ukraine which temporarily disable the online presence of several departments including the ministry of foreign affairs and the education ministry.
Critical infrastructure organisations are advised to take immediate actions to strengthen their cyber security position. The guidance includes advice to; patch all systems and prioritise patching known exploited vulnerabilities; implement multi-factor authentication; and use antivirus software
The NCSC recommends that organisations follow the advice set out within the advisory, which also lists 13 vulnerabilities known to have been exploited by Russian-backed actors in order to gain access to networks, and warns that actors have also used spear phishing and brute force techniques successfully.
Printed Copy:
Would you also like to receive CIR Magazine in print?
Data Use:
We will also send you our free daily email newsletters and other relevant communications, which you can opt out of at any time. Thank you.
YOU MIGHT ALSO LIKE