Western intelligence agencies are warning of a global cyber threat posed by Russian cybercriminals linked to the Russian Foreign Intelligence Service (SVR). This is stated in a joint report by the UK's National Cyber Security Centre (NCSC), the U.S. National Security Agency (NSA), and the FBI.
This was reported by the UK National Cyber Security Centre.
According to the report, Russian cyber operations aim to exploit vulnerabilities in systems worldwide. SVR agents, also known as APT29, actively exploit weaknesses in the software of various organizations, endangering government institutions, diplomatic missions, technology companies, and financial structures. These actions assist Russian intelligence services in gathering intelligence and conducting further cyberattacks, including operations related to supporting the war in Ukraine.
Western experts noted that Russian hackers use mass scanning of internet systems to identify vulnerabilities. In the event of a successful breach, they can not only gain access to the victim's data but also penetrate other connected networks, such as supply chains.
Organizations are strongly advised to enhance their cybersecurity, timely install updates and patches to prevent attacks. NCSC representative Paul Chichester stated that SVR hackers are highly skilled and continue to adapt their methods to attack vulnerable systems.
This report follows warnings about the activities of Russian cybercriminals, including their involvement in the SolarWinds supply chain hack and attacks on COVID-19 vaccine researchers.
Any UK organisations that may have been compromised through the vulnerabilities described in the advisory should report it to the NCSC.
