Security News > 2020 > October > Russian state hackers stole data from US government networks
DHS Cybersecurity and Infrastructure Security Agency and the FBI today warned that a Russian state-sponsored APT threat group known as Energetic Bear has hacked and stolen data from US government networks during the last two months.
Energetic Bear, a hacking group active since at least 2010, has targeted the networks of both US state, local, territorial, and tribal government organizations and aviation entities.
"The Russian state-sponsored APT actor has targeted dozens of SLTT government and aviation networks, attempted intrusions at several SLTT organizations, successfully compromised network infrastructure, and as of October 1, 2020, exfiltrated data from at least two victim servers," the two agencies said today.
The hackers used several methods in their attacks including brute-force attempts, Structured Query Language injection attacks, and also scanned for and tried to exploit vulnerable Citrix, Fortinet, and Microsoft Exchange servers.
"To date, the FBI and CISA have no information to indicate this APT actor has intentionally disrupted any aviation, education, elections, or government operations," the agencies added.
News URL
Related news
- Russian-Linked Hackers Target Eastern European NGOs and Media (source)
- Russian Hackers Using Fake Brand Sites to Spread DanaBot and StealC Malware (source)
- Russian Hacker Jailed 3+ Years for Selling Stolen Credentials on Dark Web (source)
- US warns of Iranian hackers escalating influence operations (source)
- Russian laundering millions for Lazarus hackers arrested in Argentina (source)
- US offers $2.5 million reward for hacker linked to Angler Exploit Kit (source)
- Russian APT29 hackers use iOS, Chrome exploits created by spyware vendors (source)
- Russian Hackers Exploit Safari and Chrome Flaws in High-Profile Cyberattack (source)
- US cracks down on Russian disinformation before 2024 election (source)
- Russian military hackers linked to critical infrastructure attacks (source)