Russian Cybersecurity Threats

Headline
News

Microsoft update on nation-state actor issued

Microsoft on Sunday posted an update on the latest activity by Nobelium, a Russian nation-state actor behind cyberattacks on SolarWinds customers in 2020.
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White Hacking Healthcare - August 12, 2021

This edition of Hacking Healthcare begins by describing the most recent developments related to the creation of a Bureau of Cyber Statistics and what they might mean for the healthcare sector.
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White Threat Bulletin Joint Cybersecurity Advisory on Russian GRU Kubernetes Brute Force Campaign July 2021

On July 1, 2021, the National Security Agency (NSA), Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and the UK’s National Cyber Security Centre (NCSC) released a Joint Cybersecurity Advisory regarding Russian General Staff Main Intelligence…
FBI TLP Alert
FBI TLP Alert

TLP WHITE: Joint Cybersecurity Advisory on Russian GRU Kubernetes Brute Force Campaign

Since at least mid-2019 through early 2021, Russian General Staff Main Intelligence Directorate (GRU) 85th Main Special Service Center (GTsSS), military unit 26165, used a Kubernetes® cluster to conduct widespread, distributed, and anonymized brute force access attempts against hundreds of…
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP White: CISA Releases Joint NCSC-FBI-NSA Cybersecurity Advisory on Russian SVR Activity

The United States Cybersecurity and Infrastructure Security Agency (CISA) has posted the Current Activity "Joint NCSC-CISA-FBI-NSA Cybersecurity Advisory on Russian SVR Activity".
Headline
News

Field alerted to new ransomware threat, latest Russian cyber tactics

The FBI released an alert on the ransomware variant Darkside, which this month infected a critical infrastructure company in the United States. The ransomware-as-a-service variant has affected various sectors since October 2020, including health care.
Other Cybersecurity Reports
Other Cybersecurity Reports

Joint Cyber Adv: Russian Foreign Intelligence Ser (SVR) Cyber Operations: Trends and Best Practices for Network Defenders

SUMMARY The Federal Bureau of Investigation (FBI) and US Department of Homeland Security (DHS) assess Russian Foreign Intelligence Service (SVR) cyber actors—also known as Advanced Persistent Threat 29 (APT 29), the Dukes, CozyBear, and Yttrium—will continue to seek intelligence from US and…
Headline
News

Agencies issue advisory on latest Russian cyber tactics

The Russian Foreign Intelligence Service (SVR) continues to exploit five publicly known cyber vulnerabilities, the National Security Agency, Cybersecurity and Infrastructure Security Agency and FBI said in a joint advisory. 
Other Cybersecurity Reports
Other Cybersecurity Reports

NSA, CISA and FBI Advisory: Russian SVR Targets U.S. and Allied Networks – April 2021

Executive Summary Russian Foreign Intelligence Service (SVR) actors (also known as APT29, Cozy Bear, and The Dukes) frequently use publicly known vulnerabilities to conduct widespread scanning and exploitation against vulnerable systems in an effort to obtain authentication credentials to allow…
H-ISAC: White Reports
H-ISAC: White Reports

H-ISAC TLP Green Daily Cyber Headlines, April 16, 2021

H-ISAC TLP Green Daily Cyber Headlines for April 16, 2021.
Subscribe to Russian Cybersecurity Threats